CVE-2019-14049

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon Auto versions prior to the fixed version Qualcomm Snapdragon Compute versions prior to the fixed version Qualcomm Snapdragon Consumer Electronics Connectivity versions prior to the fixed version Qualcomm Snapdragon Consumer IOT versions prior to the fixed version Qualcomm Snapdragon Industrial IOT versions prior to the fixed version Qualcomm Snapdragon Mobile versions prior to the fixed version Qualcomm Snapdragon Voice & Music versions prior to the fixed version APQ8017 version prior to the fixed version APQ8053 version prior to the fixed version APQ8096AU version prior to the fixed version MDM9206 version prior to the fixed version MDM9207C version prior to the fixed version MDM9607 version prior to the fixed version MDM9640 version prior to the fixed version MSM8953 version prior to the fixed version QCN7605 version prior to the fixed version QCS605 version prior to the fixed version SC8180X version prior to the fixed version SDA845 version prior to the fixed version SDM429 version prior to the fixed version SDM439 version prior to the fixed version SDM450 version prior to the fixed version SDM632 version prior to the fixed version SDX20 version prior to the fixed version SDX24 version prior to the fixed version SDX55 version prior to the fixed version SM8150 version prior to the fixed version SXR1130 version prior to the fixed version

Description: A Stage-2 fault occurs when writing to an ION system allocation assigned to non-HLOS memory, which is non-standard. This issue affects various Qualcomm Snapdragon products, including Auto, Compute, Consumer Electronics Connectivity, Consumer IOT, Industrial IOT, Mobile, and Voice & Music, as well as specific chipsets such as APQ8017, APQ8053, and others.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.