CVE-2019-10588

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon versions APQ8009 through SDX55

Description The issue is related to copying RTCP messages into the output buffer without checking the destination buffer size, which could lead to a remote stack overflow. This affects various Qualcomm Snapdragon products, including Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, and Snapdragon Wearables.

Recommendations For Qualcomm Snapdragon versions APQ8009 through SDX55, update to a version that includes a fix for the buffer size checking issue to prevent remote stack overflow. At the moment, there is no information about a newer version that contains a fix for this vulnerability.