CVE-2020-3629 - Qualcomm Sm7150 Firmware, Qualcomm Sxr2130 Firmware and Qualcomm Bitra Firmware

September 8, 2020

Critical 7.8

u'Stack out of bound issue occurs when making query to DSP capabilities due to wrong assumption was made on determining the buffer size for the DSP attributes' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in Bitra, Kamorta, Rennell, SC7180, SDM845, SM6150, SM7150, SM8150, SM8250, SXR2130

Affected software

Qualcomm Sm7150 Firmware

Qualcomm Sxr2130 Firmware

Qualcomm Bitra Firmware

Qualcomm Kamorta Firmware

Qualcomm Sdm845 Firmware

Qualcomm Rennell Firmware

Qualcomm Sm6150 Firmware

Qualcomm Sm8250 Firmware

Qualcomm Sm8150 Firmware

Qualcomm Sc7180 Firmware

Reference links

https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin
https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin

CVE-2020-3629 - Qualcomm Sm7150 Firmware, Qualcomm Sxr2130 Firmware and Qualcomm Bitra Firmware

Affected software

Reference links

Get alerted to vulnerabilities in your software