CVE-2019-14123

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon versions (affected versions not specified)

Description: The issue is related to a possible buffer overflow and over read due to missing bounds checks for fixed limits. This occurs when considering the Widevine HLOS client as non-trustable in various Snapdragon products, including Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking, across several chipsets such as Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, and SXR2130.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.