CVE-2020-11203

Summary

Stack overflow may occur if GSM/WCDMA broadcast config size received from user is larger than variable length array in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon WearablesAPQ8009W, APQ8064AU, APQ8096AU, AQT1000, MSM8909W, MSM8996AU, PM215, PM456, PM6125, PM6150, PM6150A, PM6150L, PM6250, PM640A, PM640L, PM640P, PM670, PM670L, PM8004, PM8005, PM8008, PM8009, PM855, PM855B, PM855L, PM855P, PM8916, PM8998, PMI632, PMI8998, PMK8002, PMM6155AU, PMM8155AU, PMM8195AU, PMM855AU, PMM8996AU, PMR735A, PMW3100, PMX50, PMX55, QAT3518, QAT3519, QAT3522, QAT3550, QAT3555, QAT5515, QAT5516, QBT1500, QBT2000, QCA6391, QCA6420, QCA6430, QCA6564, QCA6564A, QCA6564AU, QCA6574, QCA6574A, QCA6574AU, QCA6595, QCA6595AU, QCA6696, QCA8337, QCS605, QDM2301, QDM2302, QET4101, QET5100, QPA4360, QPA4361, QPA5460, QPA6560, QSW6310, QSW8573, QSW8574, QTC410S, QTC800H, QTC800S, QTC801S, QTM525, QTM527, Qualcomm215, RGR7640AU, SA6145P, SA6150P, SA6155P, SA8150P, SA8155, SA8155P, SA8195P, SD 675, SD429, SD665, SD675, SD720G, SD730, SD855, SDA429W, SDM429W, SDM830, SDR051, SDR052, SDR660, SDR660G, SDR675, SDR8150, SDR865, SDW3100, SDX50M, SDX55, SDX55M, SM6250, SMB1355, SMB1381, SMB1390, SMB231, ...[truncated*]affected

Weaknesses

  • Stack-based Buffer Overflow in Radio Interface Layer

ADP Enrichment

CVE Program Container

Additional References

References