CVE-2019-2263 - Qualcomm Sdx20 Firmware, Qualcomm Qca9980 Firmware and Qualcomm Sd 850 Firmware

July 25, 2019

Critical 7.8

Access to freed memory can happen while reading from diag driver due to use after free issue in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in IPQ4019, IPQ8064, MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, QCA9531, QCA9980, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 636, SD 650/52, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SDM660, SDX20, Snapdragon_High_Med_2016

Affected software

Qualcomm Sdx20 Firmware

Qualcomm Qca9980 Firmware

Qualcomm Sd 850 Firmware

Qualcomm Sd 212 Firmware

Qualcomm Sdm660 Firmware

Qualcomm Mdm9640 Firmware

Qualcomm Sd 435 Firmware

Qualcomm Sd 712 Firmware

Qualcomm Sd 845 Firmware

Qualcomm Sd 820 Firmware

Qualcomm Qca9531 Firmware

Qualcomm Sd 710 Firmware

Qualcomm Sd 636 Firmware

Qualcomm Snapdragon High Med 2016 Firmware

Qualcomm Mdm9650 Firmware

Qualcomm Sd 205 Firmware

Qualcomm Sd 425 Firmware

Qualcomm Sd 210 Firmware

Qualcomm Sd 652 Firmware

Qualcomm Sd 650 Firmware

Qualcomm Sd 450 Firmware

Qualcomm Mdm9206 Firmware

Qualcomm Msm8909w Firmware

Qualcomm Msm8996au Firmware

Qualcomm Ipq4019 Firmware

Qualcomm Ipq8064 Firmware

Qualcomm Sd 430 Firmware

Qualcomm Sd 427 Firmware

Qualcomm Sd 820a Firmware

Qualcomm Mdm9607 Firmware

Qualcomm Sd 670 Firmware

Qualcomm Sd 625 Firmware

Qualcomm Sd 835 Firmware

Reference links

https://www.codeaurora.org/security-bulletin/2019/07/01/july-2019-code-aurora-security-bulletin

CVE-2019-2263 - Qualcomm Sdx20 Firmware, Qualcomm Qca9980 Firmware and Qualcomm Sd 850 Firmware

Affected software

Reference links

Get alerted to vulnerabilities in your software