CVE-2017-11076 - Vulnerability Details

On some hardware revisions where VP9 decoding is hardware-accelerated, the frame size is not programmed correctly into the decoder hardware which can lead to an invalid memory access by the decoder.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Qualcomm	Msm8909w Msm8909w Firmware Msm8996au Msm8996au Firmware Sd 205 Sd 205 Firmware Sd 210 Sd 210 Firmware Sd 212 Sd 212 Firmware Sd 415 Sd 415 Firmware Sd 425 Sd 425 Firmware Sd 427 Sd 427 Firmware Sd 430 Sd 430 Firmware Sd 435 Sd 435 Firmware Sd 450 Sd 450 Firmware Sd 615 Sd 615 Firmware Sd 616 Sd 616 Firmware Sd 625 Sd 625 Firmware Sd 810 Sd 810 Firmware Sd 820 Sd 820 Firmware Sd 820a Sd 820a Firmware Sd 835 Sd 835 Firmware Sd 845 Sd 845 Firmware Sdm429 Sdm429 Firmware Sdm439 Sdm439 Firmware Sdm630 Sdm630 Firmware Sdm632 Sdm632 Firmware Sdm636 Sdm636 Firmware Sdm660 Sdm660 Firmware Sdm710 Sdm710 Firmware Snapdragon High Med 2016 Snapdragon High Med 2016 Firmware

Configuration 1 [-]

AND

cpe:2.3:o:qualcomm:msm8909w_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:msm8909w:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:qualcomm:sd_210_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd_210:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:qualcomm:sd_212_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd_212:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:qualcomm:sd_205_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd_205:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:qualcomm:sd_425_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd_425:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:qualcomm:sd_427_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd_427:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:qualcomm:sd_430_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd_430:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:qualcomm:sd_435_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd_435:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:qualcomm:sd_450_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd_450:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:qualcomm:sd_615_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd_615:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:qualcomm:sd_616_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd_616:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:qualcomm:sd_415_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd_415:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:qualcomm:sd_625_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd_625:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:qualcomm:sd_810_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd_810:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:qualcomm:sd_820_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd_820:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:qualcomm:sd_820a_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd_820a:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

cpe:2.3:o:qualcomm:sd_835_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd_835:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND

cpe:2.3:o:qualcomm:sd_845_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd_845:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND

cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND

cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND

cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND

cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND

cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND

cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND

cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*

Configuration 27 [-]

AND

cpe:2.3:o:qualcomm:snapdragon_high_med_2016_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_high_med_2016:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2018-bulletin.html

History

Thu, 09 Jan 2025 21:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Qualcomm Qualcomm msm8909w Qualcomm msm8909w Firmware Qualcomm msm8996au Qualcomm msm8996au Firmware Qualcomm sd 205 Qualcomm sd 205 Firmware Qualcomm sd 210 Qualcomm sd 210 Firmware Qualcomm sd 212 Qualcomm sd 212 Firmware Qualcomm sd 415 Qualcomm sd 415 Firmware Qualcomm sd 425 Qualcomm sd 425 Firmware Qualcomm sd 427 Qualcomm sd 427 Firmware Qualcomm sd 430 Qualcomm sd 430 Firmware Qualcomm sd 435 Qualcomm sd 435 Firmware Qualcomm sd 450 Qualcomm sd 450 Firmware Qualcomm sd 615 Qualcomm sd 615 Firmware Qualcomm sd 616 Qualcomm sd 616 Firmware Qualcomm sd 625 Qualcomm sd 625 Firmware Qualcomm sd 810 Qualcomm sd 810 Firmware Qualcomm sd 820 Qualcomm sd 820 Firmware Qualcomm sd 820a Qualcomm sd 820a Firmware Qualcomm sd 835 Qualcomm sd 835 Firmware Qualcomm sd 845 Qualcomm sd 845 Firmware Qualcomm sdm429 Qualcomm sdm429 Firmware Qualcomm sdm439 Qualcomm sdm439 Firmware Qualcomm sdm630 Qualcomm sdm630 Firmware Qualcomm sdm632 Qualcomm sdm632 Firmware Qualcomm sdm636 Qualcomm sdm636 Firmware Qualcomm sdm660 Qualcomm sdm660 Firmware Qualcomm sdm710 Qualcomm sdm710 Firmware Qualcomm snapdragon High Med 2016 Qualcomm snapdragon High Med 2016 Firmware
Weaknesses		CWE-119
CPEs		cpe:2.3:h:qualcomm:msm8909w:-:::::::* cpe:2.3:h:qualcomm:msm8996au:-:::::::* cpe:2.3:h:qualcomm:sd_205:-:::::::* cpe:2.3:h:qualcomm:sd_210:-:::::::* cpe:2.3:h:qualcomm:sd_212:-:::::::* cpe:2.3:h:qualcomm:sd_415:-:::::::* cpe:2.3:h:qualcomm:sd_425:-:::::::* cpe:2.3:h:qualcomm:sd_427:-:::::::* cpe:2.3:h:qualcomm:sd_430:-:::::::* cpe:2.3:h:qualcomm:sd_435:-:::::::* cpe:2.3:h:qualcomm:sd_450:-:::::::* cpe:2.3:h:qualcomm:sd_615:-:::::::* cpe:2.3:h:qualcomm:sd_616:-:::::::* cpe:2.3:h:qualcomm:sd_625:-:::::::* cpe:2.3:h:qualcomm:sd_810:-:::::::* cpe:2.3:h:qualcomm:sd_820:-:::::::* cpe:2.3:h:qualcomm:sd_820a:-:::::::* cpe:2.3:h:qualcomm:sd_835:-:::::::* cpe:2.3:h:qualcomm:sd_845:-:::::::* cpe:2.3:h:qualcomm:sdm429:-:::::::* cpe:2.3:h:qualcomm:sdm439:-:::::::* cpe:2.3:h:qualcomm:sdm630:-:::::::* cpe:2.3:h:qualcomm:sdm632:-:::::::* cpe:2.3:h:qualcomm:sdm636:-:::::::* cpe:2.3:h:qualcomm:sdm660:-:::::::* cpe:2.3:h:qualcomm:sdm710:-:::::::* cpe:2.3:h:qualcomm:snapdragon_high_med_2016:-:::::::* cpe:2.3:o:qualcomm:msm8909w_firmware:-:::::::* cpe:2.3:o:qualcomm:msm8996au_firmware:-:::::::* cpe:2.3:o:qualcomm:sd_205_firmware:-:::::::* cpe:2.3:o:qualcomm:sd_210_firmware:-:::::::* cpe:2.3:o:qualcomm:sd_212_firmware:-:::::::* cpe:2.3:o:qualcomm:sd_415_firmware:-:::::::* cpe:2.3:o:qualcomm:sd_425_firmware:-:::::::* cpe:2.3:o:qualcomm:sd_427_firmware:-:::::::* cpe:2.3:o:qualcomm:sd_430_firmware:-:::::::* cpe:2.3:o:qualcomm:sd_435_firmware:-:::::::* cpe:2.3:o:qualcomm:sd_450_firmware:-:::::::* cpe:2.3:o:qualcomm:sd_615_firmware:-:::::::* cpe:2.3:o:qualcomm:sd_616_firmware:-:::::::* cpe:2.3:o:qualcomm:sd_625_firmware:-:::::::* cpe:2.3:o:qualcomm:sd_810_firmware:-:::::::* cpe:2.3:o:qualcomm:sd_820_firmware:-:::::::* cpe:2.3:o:qualcomm:sd_820a_firmware:-:::::::* cpe:2.3:o:qualcomm:sd_835_firmware:-:::::::* cpe:2.3:o:qualcomm:sd_845_firmware:-:::::::* cpe:2.3:o:qualcomm:sdm429_firmware:-:::::::* cpe:2.3:o:qualcomm:sdm439_firmware:-:::::::* cpe:2.3:o:qualcomm:sdm630_firmware:-:::::::* cpe:2.3:o:qualcomm:sdm632_firmware:-:::::::* cpe:2.3:o:qualcomm:sdm636_firmware:-:::::::* cpe:2.3:o:qualcomm:sdm660_firmware:-:::::::* cpe:2.3:o:qualcomm:sdm710_firmware:-:::::::* cpe:2.3:o:qualcomm:snapdragon_high_med_2016_firmware:-:::::::*
Vendors & Products		Qualcomm Qualcomm msm8909w Qualcomm msm8909w Firmware Qualcomm msm8996au Qualcomm msm8996au Firmware Qualcomm sd 205 Qualcomm sd 205 Firmware Qualcomm sd 210 Qualcomm sd 210 Firmware Qualcomm sd 212 Qualcomm sd 212 Firmware Qualcomm sd 415 Qualcomm sd 415 Firmware Qualcomm sd 425 Qualcomm sd 425 Firmware Qualcomm sd 427 Qualcomm sd 427 Firmware Qualcomm sd 430 Qualcomm sd 430 Firmware Qualcomm sd 435 Qualcomm sd 435 Firmware Qualcomm sd 450 Qualcomm sd 450 Firmware Qualcomm sd 615 Qualcomm sd 615 Firmware Qualcomm sd 616 Qualcomm sd 616 Firmware Qualcomm sd 625 Qualcomm sd 625 Firmware Qualcomm sd 810 Qualcomm sd 810 Firmware Qualcomm sd 820 Qualcomm sd 820 Firmware Qualcomm sd 820a Qualcomm sd 820a Firmware Qualcomm sd 835 Qualcomm sd 835 Firmware Qualcomm sd 845 Qualcomm sd 845 Firmware Qualcomm sdm429 Qualcomm sdm429 Firmware Qualcomm sdm439 Qualcomm sdm439 Firmware Qualcomm sdm630 Qualcomm sdm630 Firmware Qualcomm sdm632 Qualcomm sdm632 Firmware Qualcomm sdm636 Qualcomm sdm636 Firmware Qualcomm sdm660 Qualcomm sdm660 Firmware Qualcomm sdm710 Qualcomm sdm710 Firmware Qualcomm snapdragon High Med 2016 Qualcomm snapdragon High Med 2016 Firmware

Tue, 26 Nov 2024 14:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Tue, 26 Nov 2024 09:15:00 +0000

Type	Values Removed	Values Added
Description		On some hardware revisions where VP9 decoding is hardware-accelerated, the frame size is not programmed correctly into the decoder hardware which can lead to an invalid memory access by the decoder.
Title		Use of Out-of-range Pointer Offset in Video
Weaknesses		CWE-823
References		https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2018-bulletin.html
Metrics		cvssV3_1 `{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}`

MITRE

Status: PUBLISHED

Assigner: qualcomm

Published: 2024-11-26T08:55:15.692Z

Updated: 2024-11-26T14:09:23.728Z

Reserved: 2017-07-07T00:00:00.000Z

Link: CVE-2017-11076

Vulnrichment

Updated: 2024-11-26T14:02:43.366Z

NVD

Status : Analyzed

Published: 2024-11-26T09:15:04.347

Modified: 2025-01-09T21:02:48.820

Link: CVE-2017-11076

Redhat

No data.

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object