CVE-2021-1946

Name of the Vulnerable Software and Affected Versions: Snapdragon Auto (affected versions not specified) Snapdragon Compute (affected versions not specified) Snapdragon Connectivity (affected versions not specified) Snapdragon Consumer IOT (affected versions not specified) Snapdragon Industrial IOT (affected versions not specified) Snapdragon Mobile (affected versions not specified)

Description: A Null Pointer Dereference may occur due to improper validation while processing crafted SDP body. This issue affects various Snapdragon products, including Auto, Compute, Connectivity, Consumer IOT, Industrial IOT, and Mobile.

Recommendations: For Snapdragon Auto, update to a version that includes the fix for this issue. For Snapdragon Compute, update to a version that includes the fix for this issue. For Snapdragon Connectivity, update to a version that includes the fix for this issue. For Snapdragon Consumer IOT, update to a version that includes the fix for this issue. For Snapdragon Industrial IOT, update to a version that includes the fix for this issue. For Snapdragon Mobile, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting the processing of crafted SDP bodies until a patch is available.