CVE-2019-10495

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon versions in MSM8909W, MSM8996AU, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon High Med 2016, SXR1130

Description The issue is related to an arbitrary buffer write problem that occurs during the processing of sequence headers in HEVC or AVC encoding. This affects various Qualcomm Snapdragon components, including Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, and Snapdragon Wearables.

Recommendations For each of the affected Qualcomm Snapdragon versions, apply the necessary patches or updates to resolve the arbitrary buffer write issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.