Lack of check to prevent the buffer length taking negative values can lead to stack overflow. in Snapdragon Auto, Snapdragon Compute, Snapd…
Lack of check to prevent the buffer length taking negative values can lead to stack overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in IPQ8074, MDM9150, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCA6174A, QCA8081, QCS404, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, Snapdragon_High_Med_2016, SXR1130
The product writes data past the end, or before the beginning, of the intended buffer.
https://cwe.mitre.org/data/definitions/787.html →Open in CWE collection →| Product | Vendor | Status |
|---|---|---|
| ipq8074_firmware | * | Tracked |
| mdm9150_firmware | * | Tracked |
| mdm9206_firmware | * | Tracked |
| mdm9607_firmware | * | Tracked |
| mdm9615_firmware | * | Tracked |
| mdm9625_firmware | * | Tracked |
| mdm9635m_firmware | * | Tracked |
| mdm9640_firmware | * | Tracked |
| mdm9650_firmware | * | Tracked |
| mdm9655_firmware | * | Tracked |
| msm8909w_firmware | * | Tracked |
| msm8996au_firmware | * | Tracked |
| qca6174a_firmware | * | Tracked |
| qca8081_firmware | * | Tracked |
| qcs404_firmware | * | Tracked |
| qcs405_firmware | * | Tracked |
| qcs605_firmware | * | Tracked |
| qualcomm_215_firmware | * | Tracked |
| sd_205_firmware | * | Tracked |
| sd_210_firmware | * | Tracked |