CVE-2019-2239

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon Auto versions MDM9150 through MDM9655 Qualcomm Snapdragon Compute versions MDM9150 through MDM9655 Qualcomm Snapdragon Connectivity versions MDM9150 through MDM9655 Qualcomm Snapdragon Consumer Electronics Connectivity versions MDM9150 through MDM9655 Qualcomm Snapdragon Consumer IOT versions MDM9150 through MDM9655 Qualcomm Snapdragon Industrial IOT versions MDM9150 through MDM9655 Qualcomm Snapdragon Mobile versions MDM9150 through MDM9655 Qualcomm Snapdragon Voice & Music versions MDM9150 through MDM9655 Qualcomm Snapdragon Wired Infrastructure and Networking versions MDM9150 through MDM9655

Description The issue is related to missing sanity checks in the layout, which can lead to SUI Corruption or Denial of Service. This affects various Qualcomm Snapdragon products, including Auto, Compute, Connectivity, Consumer Electronics Connectivity, Consumer IOT, Industrial IOT, Mobile, Voice & Music, and Wired Infrastructure and Networking.

Recommendations For Qualcomm Snapdragon Auto version MDM9150, update to a version that includes the necessary sanity checks in the layout. For Qualcomm Snapdragon Compute version MDM9150, update to a version that includes the necessary sanity checks in the layout. For Qualcomm Snapdragon Connectivity version MDM9150, update to a version that includes the necessary sanity checks in the layout. For Qualcomm Snapdragon Consumer Electronics Connectivity version MDM9150, update to a version that includes the necessary sanity checks in the layout. For Qualcomm Snapdragon Consumer IOT version MDM9150, update to a version that includes the necessary sanity checks in the layout. For Qualcomm Snapdragon Industrial IOT version MDM9150, update to a version that includes the necessary sanity checks in the layout. For Qualcomm Snapdragon Mobile version MDM9150, update to a version that includes the necessary sanity checks in the layout. For Qualcomm Snapdragon Voice & Music version MDM9150, update to a version that includes the necessary sanity checks in the layout. For Qualcomm Snapdragon Wired Infrastructure and Networking version MDM9150, update to a version that includes the necessary sanity checks in the layout. At the moment, there is no information about a newer version that contains a fix for this vulnerability.