Xianfeng Lu

**Name of the Vulnerable Software and Affected Versions** Qualcomm Snapdragon Connectivity and Snapdragon Mobile (affected versions not specified) **Description** The issue is related to memory corruption in the Bluetooth HOST component due to a stack-based buffer overflow. This occurs when extracting data using the command length parameter. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Qualcomm Snapdragon versions (affected versions not specified) **Description** The issue is related to a buffer over-read in the Bluetooth driver while reading l2cap length, potentially allowing an unauthorized access to protected information or causing a denial of service. This is due to the lack of buffer length checks and out-of-bounds memory reading when handling the `l2cap` parameter. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.