CVE-2015-9144

CVE-2015-9144 concerns a buffer overflow in Android on Qualcomm Snapdragon Mobile and Snapdragon Wear platforms (e.g., MDM9206/9607/9615/9625/9635M/9640/9645/9650/9655, MSM8909W, SD family up to SDX20) during processing of scheduling message information. Root cause: overflow in a scheduling-messa...

CVE-2015-9171

CVE-2015-9171 describes a buffer over-read in OEMCrypto_Dash_InstallEncapKeybox() when keyBoxLength exceeds TZ_WV_MAX_DATA_LEN (20k) on various Qualcomm/Android components. Affected: Android devices with Qualcomm Snapdragon Automotive/Mobile/Wear stack listed in the description (multiple SoCs). R...

Buffer overflow

In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Mobile and Snapdragon Wear MSM8909W, SD 210/SD 212/SD 205, SD 430, SD 450, SD 625, SD 650/52, SD 820, SD 835, SD 845, while processing a SetParam command packet in the VR service, the extracted namelen and valuelen values ar...

CVE-2017-18145

CVE-2017-18145 describes a Use-After-Free condition in the DPM native process while handling Android framework events on Qualcomm Snapdragon platforms. The underlying issue is that an iterator pointer is deleted after an event is processed, which can cause a Use After Condition during processing ...

Buffer overflow

In Snapdragon Automobile, Snapdragon Wearable and Snapdragon Mobile MDM9206,MDM9607,MDM9650,SD 210/SD 212/SD 205,SD 400,SD 410/12,SD 425,SD 430,SD 450,SD 600,SD 602A,SD 615/16/SD 415,SD 617,SD 625,SD 650/52,SD 800,SD 808,SD 810,SD 820,SD 820Am,SD 835,SD 845,MSM8909W, improper input validation in...

CVE-2017-13218

The CVE-2017-13218 entry documents a side-channel information-disclosure vulnerability caused by access to CNTVCT_EL0 in various ARM-based devices (e.g., Small Cell SoC, Snapdragon lines). Affected components include listed CPUs/SoCs (FSM9055, IPQ4019, IPQ8064, MDM9xxx, SD series, etc.) and relat...