CVE-2018-5918

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon versions MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 625, SD 650/52, SD 800, SD 810, SD 820, SD 820A, SD 835, SD 845, SD 850, SDA660, SDA845, SDX24, SXR1130.

Description: A possible buffer overflow issue exists in the DRM Trusted application of Qualcomm Snapdragon due to the lack of check function return values. This issue affects various Snapdragon products, including Automobile, Mobile, and Wear versions.

Recommendations: For versions MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 625, SD 650/52, SD 800, SD 810, SD 820, SD 820A, SD 835, SD 845, SD 850, SDA660, SDA845, SDX24, SXR1130, consider implementing checks for function return values in the DRM Trusted application to prevent potential buffer overflow issues. At the moment, there is no information about a newer version that contains a fix for this vulnerability.