PT-2021-18699 · Qualcomm · Snapdragon Connectivity+3
Published
2021-09-09
·
Updated
2021-09-16
·
CVE-2021-30290
CVSS v3.1
8.4
High
| Vector | AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Snapdragon Auto (affected versions not specified)
Snapdragon Connectivity (affected versions not specified)
Snapdragon Industrial IOT (affected versions not specified)
Snapdragon Mobile (affected versions not specified)
Description
The issue is related to a possible null pointer dereference due to a race condition between timeline fence signal and timeline fence destroy. This could potentially lead to unexpected behavior or crashes.
Recommendations
For Snapdragon Auto, update to a version that includes a fix for the null pointer dereference issue.
For Snapdragon Connectivity, update to a version that includes a fix for the null pointer dereference issue.
For Snapdragon Industrial IOT, update to a version that includes a fix for the null pointer dereference issue.
For Snapdragon Mobile, update to a version that includes a fix for the null pointer dereference issue.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Time Of Check To Time Of Use
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Snapdragon Auto
Snapdragon Connectivity
Snapdragon Industrial Iot
Snapdragon Mobile