CVE-2018-11859

The CVE-2018-11859 entry concerns a buffer overwrite in the WLAN path of Qualcomm Snapdragon Mobile platforms (SD 845 and SD 850). The root cause is input length validation failure in the WLAN host component, enabling a local attacker to trigger memory corruption within the affected device. The v...

CVE-2018-11879

CVE-2018-11879 affects Qualcomm Snapdragon Mobile SD 845. The vulnerability arises when an excessively large buffer length bypasses bounds checks, potentially allowing a buffer overwrite. Severity/metrics from NVD indicate HIGH impact with LOCAL exploitability and complete confidentiality/integri...

CVE-2018-11873

CVE-2018-11873 affects Qualcomm Snapdragon Mobile SD 845 WLAN roam-buffer handling. The issue arises from improper input validation, enabling a buffer overwrite in the WLAN component. CVSS data in the NVD indicates local access, low attack complexity, no authentication, and high impact on confide...

CVE-2018-11871

Buffer overwrite can happen in WLAN function while processing set pdev parameter command due to lack of input validation in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version IPQ4019, IPQ8064, IPQ8074, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6564,...

CVE-2018-11880

Incorrect bound check can lead to potential buffer overwrite in WLAN function in Snapdragon Mobile in version SD 835, SD 845, SD 850, SDA660...

CVE-2018-11877

When the buffer length passed is very large in WLAN, bounds check could be bypassed leading to potential buffer overwrite in Snapdragon Mobile in version SD 835, SD 845, SD 850, SDA660...

CVE-2018-11872

Improper input validation leads to buffer overwrite in the WLAN function that handles WMI commands in Snapdragon Mobile in version SD 845, SD 850, SDA660...

CVE-2018-11873

Improper input validation leads to buffer overwrite in the WLAN function that handles WLAN roam buffer in Snapdragon Mobile in version SD 845...

CVE-2018-11882

Incorrect bound check can lead to potential buffer overwrite in WLAN controller in Snapdragon Mobile in version SD 835, SD 845, SD 850, SDA660...

CVE-2018-11872

CVE-2018-11872 affects Qualcomm Snapdragon Mobile WLAN code that processes WMI commands. The root cause is improper input validation, leading to a buffer overwrite in the WLAN function. Affected devices are Snapdragon platforms SD 845, SD 850, and SDA660. The available connected sources corrobora...

CVE-2018-11856

CVE-2018-11856 is a Qualcomm Snapdragon vulnerability describing improper input validation that leads to a buffer overwrite in the WLAN/WMI handling function on Snapdragon Mobile platforms (SD 835, 845, 850). The issue is triggered within the WLAN component during processing of WMI commands. The ...

CVE-2018-11880

CVE-2018-11880 affects Qualcomm Snapdragon Mobile WLAN functionality. The root cause is an incorrect bound check that can lead to a buffer overwrite in the WLAN function on devices using SD 835, SD 845, SD 850, and SDA660 chipsets. The entry notes local access as the attack vector with a low atta...

CVE-2018-11877

The CVE-2018-11877 issue affects Qualcomm Snapdragon Mobile devices (SD 835, SD 845, SD 850, SDA660) with WLAN. The root cause is a bounds-check bypass when a very large buffer length is passed in WLAN, which could lead to a buffer overwrite. The available documentation confirms the affected comp...

CVE-2018-11871

The CVE-2018-11871 entry describes a buffer overwrite in the WLAN function when processing the set pdev parameter, caused by insufficient input validation in Qualcomm Snapdragon components (Snapdragon Automobile/Mobile/Wear) across a long list of IPQ/SDM/QCA platforms (e.g., IPQ4019, IPQ8064, IPQ...

CVE-2018-11870

Technical details for CVE-2018-11870 are not publicly available in the provided documents. No affected products, impact, or remediation are specified here. Monitor for updates from the provided sources.

CVE-2018-11854

Lack of check of valid length of input parameter may cause buffer overwrite in WLAN in Snapdragon Mobile in version SD 835, SD 845, SD 850, SDA660...

CVE-2018-11854

CVE-2018-11854 affects Qualcomm Snapdragon Mobile WLAN; the root cause is a lack of validation on the input length, which may lead to a buffer overwrite. Affected devices include SD 835, SD 845, SD 850, and SDA660 variants. The vulnerability is categorized with high impact, including confidential...

openSUSE: Security Advisory for glibc (openSUSE-SU-2018:1633-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

USN-3797-2: Linux kernel (Xenial HWE) vulnerabilities

USN-3797-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 LTS. Noam Rathaus discovered that a use-after-free vulnerability existed in the Infiniband...

USN-3797-1: Linux kernel vulnerabilities

Noam Rathaus discovered that a use-after-free vulnerability existed in the Infiniband implementation in the Linux kernel. An attacker could use this to cause a denial of service system crash. CVE-2018-14734 It was discovered that an integer overflow existed in the CD-ROM driver of the Linux kerne...