CVE-2020-3625

Description

When making query to DSP capabilities, Stack out of bounds occurs due to wrong buffer length configured for DSP attributes in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile in SM8250, SXR2130

Affected products

• Qualcomm, Inc. / Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon MobileSM8250, SXR2130 – SM8250, SXR2130

References

• MISChttps://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin