Month: November 2020

CVE-2020-3670 (agatti_firmware, apq8053_firmware, apq8096au_firmware, apq8098_firmware, kamorta_firmware, mdm9150_firmware, mdm9205_firmware, mdm9206_firmware, mdm9625_firmware, mdm9635m_firmware, mdm9640_firmware, mdm9645_firmware, mdm9650_firmware, mdm9655_firmware, msm8905_firmware, msm8909w_firmware, msm8917_firmware, msm8940_firmware, msm8953_firmware, msm8996au_firmware, msm8998_firmware, nicobar_firmware, qcm2150_firmware, qcm6125_firmware, qcs605_firmware, qcs610_firmware, qm215_firmware, rennell_firmware, sa415m_firmware, saipan_firmware, sc7180_firmware, sc8180x_firmware, sda660_firmware, sda845_firmware, sdm429_firmware, sdm429w_firmware, sdm439_firmware, sdm450_firmware, sdm630_firmware, sdm632_firmware, sdm636_firmware, sdm660_firmware, sdm670_firmware, sdm710_firmware, sdm845_firmware, sdm850_firmware, sdx20_firmware, sdx24_firmware, sdx55_firmware, sm6150_firmware, sm7150_firmware, sm8150_firmware, sxr1130_firmware)

u’Potential out of bounds read while processing downlink NAS transport message due to improper length check of Information Element(IEI) NAS…

CVE-2020-3673 (agatti_firmware, apq8053_firmware, apq8096au_firmware, apq8098_firmware, bitra_firmware, kamorta_firmware, msm8905_firmware, msm8909w_firmware, msm8917_firmware, msm8940_firmware, msm8953_firmware, msm8996au_firmware, nicobar_firmware, qca6390_firmware, qca6574au_firmware, qcm2150_firmware, qcs605_firmware, qm215_firmware, rennell_firmware, sa6155p_firmware, sa8155p_firmware, saipan_firmware, sda660_firmware, sdm429_firmware, sdm429w_firmware, sdm439_firmware, sdm450_firmware, sdm630_firmware, sdm632_firmware, sdm636_firmware, sdm660_firmware, sdm670_firmware, sdm710_firmware, sdm845_firmware, sm6150_firmware, sm7150_firmware, sm8150_firmware, sm8250_firmware, sxr1130_firmware, sxr2130_firmware)

u’Buffer overflow can happen as part of SIP message packet processing while storing values in array due to lack of…

CVE-2020-3684 (agatti_firmware, apq8009_firmware, apq8098_firmware, bitra_firmware, ipq6018_firmware, kamorta_firmware, mdm9150_firmware, mdm9205_firmware, mdm9206_firmware, mdm9607_firmware, mdm9650_firmware, msm8905_firmware, msm8998_firmware, nicobar_firmware, qca6390_firmware, qcs404_firmware, qcs405_firmware, qcs605_firmware, qcs610_firmware, rennell_firmware, sa415m_firmware, sa515m_firmware, sa6155p_firmware, sa8155p_firmware, saipan_firmware, sc7180_firmware, sc8180x_firmware, sda660_firmware, sda845_firmware, sdm630_firmware, sdm636_firmware, sdm660_firmware, sdm670_firmware, sdm710_firmware, sdm845_firmware, sdm850_firmware, sdx20_firmware, sdx24_firmware, sdx55_firmware, sm6150_firmware, sm7150_firmware, sm8150_firmware, sm8250_firmware, sxr1130_firmware, sxr2130_firmware)

u’QSEE reads the access permission policy for the SMEM TOC partition from the SMEM TOC contents populated by XBL Loader…