CVE-2018-11942

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon versions (affected versions not specified)

Description The issue is related to the failure to initialize reserved memory sent to the firmware, potentially exposing 1 byte of uninitialized kernel SKB memory to the firmware. This affects various Qualcomm Snapdragon products, including Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking, in specific chipsets such as IPQ4019, IPQ8064, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCS405, QCS605, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 636, SD 675, SD 712, SD 730, SD 820A, SD 835, SD 845, SD 850, SD 855, SDA660, SDM630, SDM660, SDX20, SDX24.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.