7 matches found
CVE-2020-11136
CVE-2020-11136 corresponds to a buffer over-read in the Qualcomm audio driver caused by not returning NULL for a zero-sized memory request in the vulnerable Snapdragon family (Auto/Compute/Connectivity/IOT/Mobile, etc.). The issue affects Qualcomm closed‑source components and is listed as Critica...
CVE-2020-11137
CVE-2020-11137 describes an integer multiplication overflow in Qualcomm Snapdragon components that leads to a smaller-than-expected buffer allocation, causing memory access out of bounds and potential device instability across Snapdragon Auto/Compute/Connectivity/IoT families. Public sources (NVD...
CVE-2020-3686
CVE-2020-3686 concerns a memory out-of-bounds issue during music playback when an incorrect bitstream is copied into an array without length checks in Qualcomm Snapdragon components (Auto, Compute, Connectivity, Consumer IOT, Industrial IOT, IoT, Mobile, Voice & Music, Wearables, and related infr...
CVE-2020-11143
CVE-2020-11143 affects Qualcomm Snapdragon components (Auto/Compute/Connectivity/IoT/Wearables, etc.). The issue is a memory safety vulnerability causing out-of-bounds reads/writes during music playback when content is modified, stemming from copying data without validating the destination buffer...
CVE-2020-3691
CVE-2020-3691 describes a possible out-of-bounds memory access in audio due to an integer underflow when processing modified contents in Qualcomm Snapdragon closed‑source components (audio path). The root cause is an integer underflow leading to out-of-bounds reads/writes in the affected audio pr...
CVE-2020-11138
CVE-2020-11138 concerns Qualcomm Snapdragon components (notably in Snapdragon Auto/Compute/Connectivity/IoT/Wearables and related Snapdragon media paths) where uninitialized heap memory leads to uninitialized pointers during music playback with an incorrect bitstream, causing instability. The vul...
CVE-2020-3685
CVE-2020-3685 affects Qualcomm closed‑source components used in Snapdragon platforms. The issue arises from a freed pointer variable not being cleared, which can lead to memory corruption and result in a denial of service on devices such as Snapdragon Auto, Compute, Connectivity, IoT, Wearables, ...