CVE-2017-18278
N/A
N/A
Summary
An integer underflow may occur due to lack of check when received data length from font_mgr_qsee_request_service is bigger than the minimal value of the segment header, which may result in a buffer overflow, in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SD 845, SD 850.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Qualcomm Technologies, Inc. | Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear | MDM9206 | affected |
| Qualcomm Technologies, Inc. | Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear | MDM9607 | affected |
| Qualcomm Technologies, Inc. | Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear | MDM9650 | affected |
| Qualcomm Technologies, Inc. | Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear | SD 210/SD 212/SD 205 | affected |
| Qualcomm Technologies, Inc. | Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear | SD 425 | affected |
| Qualcomm Technologies, Inc. | Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear | SD 430 | affected |
| Qualcomm Technologies, Inc. | Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear | SD 450 | affected |
| Qualcomm Technologies, Inc. | Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear | SD 625 | affected |
| Qualcomm Technologies, Inc. | Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear | SD 650/52 | affected |
| Qualcomm Technologies, Inc. | Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear | SD 820 | affected |
| Qualcomm Technologies, Inc. | Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear | SD 820A | affected |
| Qualcomm Technologies, Inc. | Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear | SD 835 | affected |
| Qualcomm Technologies, Inc. | Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear | SD 845 | affected |
| Qualcomm Technologies, Inc. | Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear | SD 850 | affected |
Weaknesses
- CWE680: Integer Overflow to Buffer Overflow
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.