CVE-2020-11208

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon versions SD820, SD821, SD820, QCS603, QCS605, SDA855, SA6155P, SA6145P, SA6155, SA6155P, SD855, SD 675, SD660, SD429, SD439

Description The issue is related to an out of bounds problem in DSP services. This occurs while processing received arguments due to improper validation of the length received as an argument.

Recommendations For Qualcomm Snapdragon versions SD820, SD821, SD820, QCS603, QCS605, SDA855, SA6155P, SA6145P, SA6155, SA6155P, SD855, SD 675, SD660, SD429, SD439, consider implementing proper validation of the length of received arguments in DSP services to prevent out of bounds issues. At the moment, there is no information about a newer version that contains a fix for this vulnerability.