Qcs8155 Security Vulnerabilities

CVE-2023-43513

Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring...

CVE-2023-33077

Memory corruption in HLOS while converting from authorization token to HIDL...

CVE-2023-33030

Memory corruption in HLOS while running playready...

CVE-2023-33032

Memory corruption in TZ Secure OS while requesting a memory allocation from TA...

CVE-2023-33107

Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL...

CVE-2023-33070

Transient DOS in Automotive OS due to improper authentication to the secure IO...

CVE-2023-33063

Memory corruption in DSP Services during a remote call from HLOS to...

CVE-2023-33017

Memory corruption in Boot while running a ListVars test in UEFI Menu during...

CVE-2023-28586

Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in...

CVE-2023-28585

Memory corruption while loading an ELF segment in TEE...

CVE-2023-28546

Memory Corruption in SPS Application while exporting public key in sorter...

CVE-2023-22383

Memory Corruption in camera while installing a fd for a particular DMA...

CVE-2023-28554

Information Disclosure in Qualcomm IPC while reading values from shared memory in...

CVE-2023-28556

Cryptographic issue in HLOS during key...

CVE-2023-24852

Memory Corruption in Core due to secure memory access by user while loading modem...

CVE-2023-24853

Memory Corruption in HLOS while registering for key provisioning...

CVE-2023-28538

Memory corruption in WIN Product while invoking WinAcpi update driver in the UEFI...

CVE-2023-21662

Memory corruption in Core Platform while printing the response buffer in...

CVE-2023-21664

Memory Corruption in Core Platform while printing the response buffer in...

CVE-2023-28575

The cam_get_device_priv function does not check the type of handle being returned (device/session/link). This would lead to invalid type usage if a wrong handle is passed to...

CVE-2023-21626

Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one...

CVE-2023-21627

Memory corruption in Trusted Execution Environment while calling service API with invalid...

CVE-2023-22387

Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory...

CVE-2023-21624

Information disclosure in DSP Services while loading dynamic...

CVE-2023-21670

Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged...

CVE-2022-40529

Memory corruption due to improper access control in kernel while processing a mapping request from root...

CVE-2022-40507

Memory corruption due to double free in Core while mapping HLOS address to the...

CVE-2022-33263

Memory corruption due to use after free in Core when multiple DCI clients register and...

CVE-2022-33224

Memory corruption in core due to buffer copy without check9ing the size of input while processing ioctl...

CVE-2022-22076

information disclosure due to cryptographic issue in Core during RPMB read...

CVE-2023-21666

Memory Corruption in Graphics while accessing a buffer allocated through the graphics...

CVE-2023-21665

Memory corruption in Graphics while importing a...

CVE-2022-33231

Memory corruption due to double free in core while initializing the encryption...

CVE-2022-33260

Memory corruption due to stack based buffer overflow in core while sending command from USB of large...

CVE-2022-22075

Information Disclosure in Graphics during GPU context...

CVE-2022-33242

Memory corruption due to improper authentication in Qualcomm IPC while loading unsigned lib in audio...

CVE-2022-33243

Memory corruption due to improper access control in Qualcomm...

CVE-2022-40520

Memory corruption due to stack-based buffer overflow in...

CVE-2022-40517

Memory corruption in core due to stack-based buffer...

CVE-2022-40518

Information disclosure due to buffer overread in...

CVE-2022-40519

Information disclosure due to buffer overread in...

CVE-2022-40516

Memory corruption in Core due to stack-based buffer...

CVE-2022-25715

Memory corruption in display driver due to incorrect type casting while accessing the fence structure...

CVE-2022-25717

Memory corruption in display due to double free while allocating frame buffer...

CVE-2022-25721

Memory corruption in video driver due to type confusion error during video...

CVE-2022-25711

Memory corruption in camera due to improper validation of array index in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon...

CVE-2022-25677

Memory corruption in diag due to use after free while processing dci packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and...

CVE-2022-25743

Memory corruption in graphics due to use-after-free while importing graphics buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...

CVE-2022-25724

Memory corruption in graphics due to buffer overflow while validating the user address in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...

CVE-2022-25666

Memory corruption due to use after free in service while trying to access maps by different threads in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and...