CVE-2020-3673

Name of the Vulnerable Software and Affected Versions Snapdragon Auto versions Agatti through SM8250 Snapdragon Compute versions Agatti through SM8250 Snapdragon Connectivity versions Agatti through SM8250 Snapdragon Consumer IOT versions Agatti through SM8250 Snapdragon Industrial IOT versions Agatti through SM8250 Snapdragon Mobile versions Agatti through SM8250 Snapdragon Wearables versions Agatti through SM8250

Description A buffer overflow can occur during SIP message packet processing due to a lack of validation for the index length when storing values in an array. This issue affects various Snapdragon products.

Recommendations For Snapdragon Auto, update to a version that includes the fix for this issue. For Snapdragon Compute, update to a version that includes the fix for this issue. For Snapdragon Connectivity, update to a version that includes the fix for this issue. For Snapdragon Consumer IOT, update to a version that includes the fix for this issue. For Snapdragon Industrial IOT, update to a version that includes the fix for this issue. For Snapdragon Mobile, update to a version that includes the fix for this issue. For Snapdragon Wearables, update to a version that includes the fix for this issue. As a temporary workaround, consider disabling SIP message packet processing until a patch is available.