CVE-2020-3662

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon versions APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, MSM8909W, MSM8917, MSM8953, MSM8996, MSM8996AU, MSM8998, QCA6574AU, QCS405, QCS605, QM215, Rennell, Saipan, SDA660, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM845, SDX20, SM6150, SM7150, SM8150, SM8250, SXR2130

Description A buffer overflow can occur while parsing a nonstandard eac3 header when playing a clip, affecting various Qualcomm Snapdragon products, including Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, and Snapdragon Wearables.

Recommendations For each of the affected Qualcomm Snapdragon versions, update to a newer version that includes a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.