I read it as "allow babies to snoop on conversations". Should have my tea before reading The Reg.
A heap overflow vulnerability in Qualcomm's Snapdragon 855 system-on-chip modem firmware, used in Android devices, could be exploited by baddies to run arbitrary code on unsuspecting users' devices, according to Check Point. The software bug, tracked as CVE-2020-11292, can be abused to trigger a heap overflow in devices that …
''Exposed Android smartphones to snooping''.
So the devices were performing as designed, then.
Seriously - I do wish there was a viable alternative to Qualcomm in the Android market, or at least that Samsung would pull its finger out and make Exynos even slightly competitive. Qualcomm's heavy hand even stifles entire nascent markets, such as its miserable efforts at making up-to-date SOCs for smart watches
"Good thing researchers spotted it, no evidence of exploit in the wild"
The Snapdragon 855 was first released at the start of 2019. That puts it firmly outside support for most Android devices. There may be no evidence of it being exploited in the wild yet, but how much would you like to bet that state of affairs continues now it's been published for the world to see?
Biting the hand that feeds IT © 1998–2021