CVE-2019-2284

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon versions (affected versions not specified)

Description The issue is related to a possible use-after-free problem caused by a race condition. This occurs when the camera ioctl is called concurrently in various Snapdragon products, including Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, and Snapdragon Wearables. The affected chipsets include MSM8909W, QCS405, QCS605, Qualcomm 215, SD 425, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 845 / SD 850, SD 855, and SDM439, SDX24.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.