» 2021 » 6월

CVE-2020-11262

Posted on 2021년 6월 9일2021년 6월 9일 by admin

CVE-2020-11262

A race between command submission and destroying the context can cause an invalid context being added to the list leads to use after free issue. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Source: CVE-2020-11262

CVE-2020-11165

Posted on 2021년 6월 9일2021년 6월 9일 by admin

CVE-2020-11165

Memory corruption due to buffer overflow while copying the message provided by HLOS into buffer without validating the length of buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

Source: CVE-2020-11165

CVE-2020-11160

Posted on 2021년 6월 9일2021년 6월 9일 by admin

CVE-2020-11160

Resource leakage issue during dci client registration due to reference count is not decremented if dci client registration fails in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Source: CVE-2020-11160

CVE-2020-11256

Posted on 2021년 6월 9일2021년 6월 9일 by admin

CVE-2020-11256

Memory corruption due to lack of check of validation of pointer to buffer passed to trustzone in Snapdragon Wired Infrastructure and Networking

Source: CVE-2020-11256

CVE-2020-11257

Posted on 2021년 6월 9일2021년 6월 9일 by admin

CVE-2020-11257

Memory corruption due to lack of validation of pointer arguments passed to TrustZone BSP in Snapdragon Wired Infrastructure and Networking

Source: CVE-2020-11257

CVE-2020-11258

Posted on 2021년 6월 9일2021년 6월 9일 by admin

CVE-2020-11258

Memory corruption due to lack of validation of pointer arguments passed to Trustzone BSP in Snapdragon Wired Infrastructure and Networking

Source: CVE-2020-11258

CVE-2020-11259

Posted on 2021년 6월 9일2021년 6월 9일 by admin

CVE-2020-11259

Memory corruption due to lack of validation of pointer arguments passed to Trustzone BSP in Snapdragon Wired Infrastructure and Networking

Source: CVE-2020-11259

CVE-2020-11126

Posted on 2021년 6월 9일2021년 6월 9일 by admin

CVE-2020-11126

Possible out of bound read while WLAN frame parsing due to lack of check for body and header length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

Source: CVE-2020-11126

CVE-2021-20732

Posted on 2021년 6월 9일2021년 6월 9일 by admin

CVE-2021-20732

The ATOM (ATOM – Smart life App for Android versions prior to 1.8.1 and ATOM – Smart life App for iOS versions prior to 1.8.2) does not verify server certificate properly, which allows man-in-the-middle attackers to eavesdrop on encrypted communication via a crafted certificate.

Source: CVE-2021-20732

CVE-2021-20728

Posted on 2021년 6월 9일2021년 6월 9일 by admin

CVE-2021-20728

Improper access control vulnerability in goo blog App for Android ver.1.2.25 and earlier and for iOS ver.1.3.3 and earlier allows a remote attacker to lead a user to access an arbitrary website via the vulnerable App.

Source: CVE-2021-20728