CVE-2020-11262

all versions

A race between command submission and destroying the context can cause an invalid context being added to the list leads to use aft

7.0HIGH

CVE-2020-11261

all versions

Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdra

7.8HIGH

CVE-2020-11239

all versions

Use after free issue when importing a DMA buffer by using the CPU address of the buffer due to attachment is not cleaned up proper

7.8HIGH

CVE-2020-11238

all versions

Possible Buffer over-read in ARP/NS parsing due to lack of check of packet length received in Snapdragon Auto, Snapdragon Compute,

7.5HIGH

CVE-2020-11235

all versions

Buffer overflow might occur while parsing unified command due to lack of check of input data received in Snapdragon Auto, Snapdrag

7.8HIGH

CVE-2020-11233

all versions

Time-of-check time-of-use race condition While processing partition entries due to newly created buffer was read again from mmc wi

7.0HIGH

CVE-2020-11161

all versions

Out-of-bounds memory access can occur while calculating alignment requirements for a negative width from external components in Sn

7.1HIGH

CVE-2020-11159

all versions

Buffer over-read can happen while processing WPA,RSN IE of beacon and response frames if IE length is less than length of frame po

9.1CRITICAL

CVE-2021-1910

all versions

Double free in video due to lack of input buffer length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Sna

7.3HIGH

CVE-2021-1906

all versions

Improper handling of address deregistration on failure can lead to new GPU address allocation failure. in Snapdragon Auto, Snapdra

6.2MEDIUM

CVE-2021-1905

all versions

Possible use after free due to improper handling of memory mapping of multiple processes simultaneously. in Snapdragon Auto, Snapd

8.4HIGH

CVE-2020-11293

all versions

Out of bound read can happen in Widevine TA while copying data to buffer from user data due to lack of check of buffer length rece

5.1MEDIUM

CVE-2020-11289

all versions

Out of bound write can occur in TZ command handler due to lack of validation of command ID in Snapdragon Auto, Snapdragon Compute,

7.8HIGH

CVE-2020-11279

all versions

Memory corruption while processing crafted SDES packets due to improper length check in sdes packets recieved in Snapdragon Auto,

7.5HIGH

CVE-2021-1892

all versions

Memory corruption due to improper input validation while processing IO control which is nonstandard in Snapdragon Compute, Snapdra

8.4HIGH

CVE-2020-11251

all versions

Out-of-bounds read vulnerability while accessing DTMF payload due to lack of check of buffer length before copying in Snapdragon A

8.2HIGH

CVE-2020-11234

all versions

When sending a socket event message to a user application, invalid information will be passed if socket is freed by other thread r

8.4HIGH

CVE-2020-11309

all versions

Use after free in GPU driver while mapping the user memory to GPU memory due to improper check of referenced memory in Snapdragon

7.8HIGH

CVE-2020-11299

all versions

Buffer overflow can occur in video while playing the non-standard clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connecti

9.8CRITICAL

CVE-2020-11188

all versions

Buffer over-read can happen while parsing received SDP values due to lack of NULL termination check on SDP in Snapdragon Auto, Sna

9.1CRITICAL

CVE-2020-11296

all versions

Arithmetic overflow can happen while processing NOA IE due to improper error handling in Snapdragon Auto, Snapdragon Compute, Snap

7.5HIGH

CVE-2020-11276

all versions

Possible buffer over read while processing P2P IE and NOA attribute of beacon and probe response frames due to improper validation

9.1CRITICAL

CVE-2020-11275

all versions

Possible buffer over-read while parsing quiet IE in Rx beacon frame due to improper check of IE length in received beacon in Snapd

9.1CRITICAL

CVE-2020-11272

all versions

Before enqueuing a frame to the PE queue for further processing, an entry in a hash table can be deleted and using a stale version

9.8CRITICAL

CVE-2020-11269

all versions

Possible memory corruption while processing EAPOL frames due to lack of validation of key length before using it in Snapdragon Aut

8.8HIGH

CVE-2020-11204

all versions

Possible memory corruption and information leakage in sub-system due to lack of check for validity and boundary compliance for par

7.8HIGH

CVE-2020-11195

all versions

Out of bound write and read in TA while processing command from NS side due to improper length check on command and response buffe

7.8HIGH

CVE-2020-11177

all versions

User can overwrite Security Code NV item without knowing current SPC due to improper validation of SPC code setting and device loc

8.8HIGH

CVE-2020-11170

all versions

Out of bound memory access while playing music playbacks with crafted vorbis content due to improper checks in header extraction i

9.8CRITICAL

CVE-2020-11119

all versions

Buffer over-read can happen when the buffer length received from response handlers is more than the size of the payload in Snapdra

7.5HIGH