CVE-2017-18278

Summary

An integer underflow may occur due to lack of check when received data length from font_mgr_qsee_request_service is bigger than the minimal value of the segment header, which may result in a buffer overflow, in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SD 845, SD 850.

Affected Software

VendorProductVersion RangeStatus
Qualcomm Technologies, Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearMDM9206affected
Qualcomm Technologies, Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearMDM9607affected
Qualcomm Technologies, Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearMDM9650affected
Qualcomm Technologies, Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSD 210/SD 212/SD 205affected
Qualcomm Technologies, Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSD 425affected
Qualcomm Technologies, Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSD 430affected
Qualcomm Technologies, Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSD 450affected
Qualcomm Technologies, Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSD 625affected
Qualcomm Technologies, Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSD 650/52affected
Qualcomm Technologies, Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSD 820affected
Qualcomm Technologies, Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSD 820Aaffected
Qualcomm Technologies, Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSD 835affected
Qualcomm Technologies, Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSD 845affected
Qualcomm Technologies, Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSD 850affected

Weaknesses

  • CWE680: Integer Overflow to Buffer Overflow

ADP Enrichment

CVE Program Container

Additional References

References