CVE-2019-14072
EUVD-2019-532705.03.2020, 09:15
Unhandled paging request is observed due to dereferencing an already freed object because of race condition between sparse free and sparse bind ioctls which access the same physical entry in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8096AU, APQ8098, MDM9607, MSM8909W, MSM8939, MSM8953, MSM8996AU, Nicobar, QCS405, QCS605, Rennell, SA6155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM450, SDM632, SDM670, SDM710, SDM845, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| qualcomm | apq8009_firmware | - |
| qualcomm | apq8096au_firmware | - |
| qualcomm | apq8098_firmware | - |
| qualcomm | mdm9607_firmware | - |
| qualcomm | msm8909w_firmware | - |
| qualcomm | msm8939_firmware | - |
| qualcomm | msm8953_firmware | - |
| qualcomm | msm8996au_firmware | - |
| qualcomm | nicobar_firmware | - |
| qualcomm | qcs405_firmware | - |
| qualcomm | qcs605_firmware | - |
| qualcomm | rennell_firmware | - |
| qualcomm | sa6155p_firmware | - |
| qualcomm | saipan_firmware | - |
| qualcomm | sc8180x_firmware | - |
| qualcomm | sda660_firmware | - |
| qualcomm | sda845_firmware | - |
| qualcomm | sdm429_firmware | - |
| qualcomm | sdm429w_firmware | - |
| qualcomm | sdm450_firmware | - |
| qualcomm | sdm632_firmware | - |
| qualcomm | sdm670_firmware | - |
| qualcomm | sdm710_firmware | - |
| qualcomm | sdm845_firmware | - |
| qualcomm | sdx24_firmware | - |
| qualcomm | sdx55_firmware | - |
| qualcomm | sm6150_firmware | - |
| qualcomm | sm7150_firmware | - |
| qualcomm | sm8150_firmware | - |
| qualcomm | sm8250_firmware | - |
| qualcomm | sxr1130_firmware | - |
| qualcomm | sxr2130_firmware | - |
𝑥
= Vulnerable software versions