CVE-2020-3676

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon versions prior to the fixed version

Description The issue is related to possible memory corruption in perfservice due to improper validation of array length taken from a user application. This affects various Qualcomm Snapdragon products, including Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, and Snapdragon Mobile, in a range of chipsets such as APQ8096AU, APQ8098, Kamorta, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, Nicobar, QCM2150, QCS605, QM215, Rennell, Saipan, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.