CVE-2019-10572

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon Auto versions APQ8009 through SDM845 Qualcomm Snapdragon Compute versions APQ8009 through SDM845 Qualcomm Snapdragon Connectivity versions APQ8009 through SDM845 Qualcomm Snapdragon Consumer Electronics Connectivity versions APQ8009 through SDM845 Qualcomm Snapdragon Consumer IOT versions APQ8009 through SDM845 Qualcomm Snapdragon Industrial IOT versions APQ8009 through SDM845 Qualcomm Snapdragon IoT versions APQ8009 through SDM845 Qualcomm Snapdragon Mobile versions APQ8009 through SDM845 Qualcomm Snapdragon Voice & Music versions APQ8009 through SDM845 Qualcomm Snapdragon Wearables versions APQ8009 through SDM845

Description The issue arises from an improper check in the video driver while processing data from video firmware, leading to an integer overflow and then a buffer overflow. This affects various Qualcomm Snapdragon products.

Recommendations For Qualcomm Snapdragon Auto versions APQ8009 through SDM845, update the video driver to a version that includes the fix for the improper check. For Qualcomm Snapdragon Compute versions APQ8009 through SDM845, update the video driver to a version that includes the fix for the improper check. For Qualcomm Snapdragon Connectivity versions APQ8009 through SDM845, update the video driver to a version that includes the fix for the improper check. For Qualcomm Snapdragon Consumer Electronics Connectivity versions APQ8009 through SDM845, update the video driver to a version that includes the fix for the improper check. For Qualcomm Snapdragon Consumer IOT versions APQ8009 through SDM845, update the video driver to a version that includes the fix for the improper check. For Qualcomm Snapdragon Industrial IOT versions APQ8009 through SDM845, update the video driver to a version that includes the fix for the improper check. For Qualcomm Snapdragon IoT versions APQ8009 through SDM845, update the video driver to a version that includes the fix for the improper check. For Qualcomm Snapdragon Mobile versions APQ8009 through SDM845, update the video driver to a version that includes the fix for the improper check. For Qualcomm Snapdragon Voice & Music versions APQ8009 through SDM845, update the video driver to a version that includes the fix for the improper check. For Qualcomm Snapdragon Wearables versions APQ8009 through SDM845, update the video driver to a version that includes the fix for the improper check.