PT-2019-16327 · Qualcomm · Sda660+45

Publicado

2019-05-24

Atualizado

2019-05-29

CVE-2019-2247

CVSS v2.0

4.6

Média

Vetor

AV:L/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon Auto versions (affected versions not specified) Qualcomm Snapdragon Compute versions (affected versions not specified) Qualcomm Snapdragon Consumer IOT versions (affected versions not specified) Qualcomm Snapdragon Industrial IOT versions (affected versions not specified) Qualcomm Snapdragon IoT versions (affected versions not specified) Qualcomm Snapdragon Mobile versions (affected versions not specified) Qualcomm Snapdragon Voice & Music versions (affected versions not specified) Qualcomm Snapdragon Wearables versions (affected versions not specified) MDM9150 (affected versions not specified) MDM9206 (affected versions not specified) MDM9607 (affected versions not specified) MDM9640 (affected versions not specified) MDM9650 (affected versions not specified) MSM8909W (affected versions not specified) MSM8996AU (affected versions not specified) QCS605 (affected versions not specified) Qualcomm 215 (affected versions not specified) SD 210/SD 212/SD 205 (affected versions not specified) SD 425 (affected versions not specified) SD 439 / SD 429 (affected versions not specified) SD 450 (affected versions not specified) SD 615/16/SD 415 (affected versions not specified) SD 625 (affected versions not specified) SD 632 (affected versions not specified) SD 636 (affected versions not specified) SD 650/52 (affected versions not specified) SD 712 / SD 710 / SD 670 (affected versions not specified) SD 820A (affected versions not specified) SD 835 (affected versions not specified) SD 845 / SD 850 (affected versions not specified) SD 855 (affected versions not specified) SDA660 (affected versions not specified) SDM439 (affected versions not specified) SDM630 (affected versions not specified) SDM660 (affected versions not specified) SDX20 (affected versions not specified) SDX24 (affected versions not specified)

Description The issue is related to a double free problem that can occur when running multiple instances of the smp2p test. This is due to the lack of proper protection when using a global variable.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Double Free

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-415

Identificadores relacionados

CVE-2019-2247

Produtos afetados

Mdm9150

Mdm9206

Mdm9607

Mdm9640

Mdm9650

Msm8909W

Msm8996Au

Qcs605

Qualcomm 215

Qualcomm Snapdragon Auto

Qualcomm Snapdragon Compute

Qualcomm Snapdragon Consumer Iot

Qualcomm Snapdragon Industrial Iot

Qualcomm Snapdragon

Qualcomm Snapdragon Mobile

Qualcomm Snapdragon Voice & Music

Qualcomm Snapdragon Wearables

Sd 205

Sd 210

Sd 212

Sd 415

Sd 425

Sd 429

Sd 439

Sd 450

Sd 615

Sd 616

Sd 625

Sd 632

Sd 636

Sd 650

Sd 652

Sd 670

Sd 710

Sd 712

Sd 820A

Sd 835

Sd 845

Sd 850

Sd 855

Sda660

Sdm439

Sdm630

Sdm660

Sdx20

Sdx24

PT-2019-16327 · Qualcomm · Sda660+45

CVE-2019-2247

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 2