CVE-2020-11170

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon (affected versions not specified)

Description The issue is related to out of bound memory access while playing music playbacks with crafted vorbis content due to improper checks in header extraction. This affects various Qualcomm Snapdragon products, including Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.