CVE-2019-10565

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon versions (affected versions not specified) Google Android (affected versions not specified)

Description The issue is related to a double free problem that occurs when the sensor power settings are freed by one thread while another thread attempts to access them. This problem affects various Qualcomm Snapdragon products, including Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, and Snapdragon Wearables, in multiple chipsets such as APQ8053, MDM9206, MDM9207C, MDM9607, MSM8905, MSM8909, MSM8909W, QCN7605, QCS405, QCS605, SDM845, SDX24, and SXR1130. It also affects Google Android, potentially allowing for privilege escalation.

Recommendations For Qualcomm Snapdragon, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Google Android, at the moment, there is no information about a newer version that contains a fix for this vulnerability.