High severity7.8NVD Advisory· Published Feb 25, 2019· Updated Jun 17, 2026
CVE-2018-13905
CVE-2018-13905
Description
KGSL syncsource lock not handled properly during syncsource cleanup can lead to use after free issue in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MDM9206, MDM9607, MDM9650, MSM8909W, QCS605, SD 210/SD 212/SD 205, SD 439 / SD 429, SD 712 / SD 710 / SD 670, SD 820A, SD 845 / SD 850, SD 855, SDM439, SDM660, SDX24.
Affected products
2- Qualcomm, Inc./Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearablesv5Range: MDM9206, MDM9607, MDM9650, MSM8909W, QCS605, SD 210/SD 212/SD 205, SD 439 / SD 429, SD 712 / SD 710 / SD 670, SD 820A, SD 845 / SD 850, SD 855, SDM439, SDM660, SDX24
Patches
Vulnerability mechanics
References
2- www.codeaurora.org/security-bulletin/2019/02/04/february-2019-code-aurora-security-bulletinnvdPatchThird Party Advisory
- www.securityfocus.com/bid/106949nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.