Real-time Operating System Security Vulnerabilities

CVE-2021-27502

Texas Instruments TI-RTOS, when configured to use HeapMem heap(default), malloc returns a valid pointer to a small buffer on extremely large values, which can trigger an integer overflow vulnerability in 'HeapMem_allocUnprotected' and result in code...

CVE-2021-27429

Texas Instruments TI-RTOS returns a valid pointer to a small buffer on extremely large values. This can trigger an integer overflow vulnerability in 'HeapTrack_alloc' and result in code...

CVE-2021-22636

Texas Instruments TI-RTOS, when configured to use HeapMem heap(default), malloc returns a valid pointer to a small buffer on extremely large values, which can trigger an integer overflow vulnerability in 'HeapMem_allocUnprotected' and result in code...

CVE-2022-35806

Azure RTOS GUIX Studio Remote Code Execution...

CVE-2022-35779

Azure RTOS GUIX Studio Remote Code Execution...

CVE-2022-35773

Azure RTOS GUIX Studio Remote Code Execution...

CVE-2022-34685

Azure RTOS GUIX Studio Information Disclosure...

CVE-2022-34686

Azure RTOS GUIX Studio Information Disclosure...

CVE-2022-34687

Azure RTOS GUIX Studio Remote Code Execution...

CVE-2022-30175

Azure RTOS GUIX Studio Remote Code Execution...

CVE-2022-30176

Azure RTOS GUIX Studio Remote Code Execution...

CVE-2022-30180

Azure RTOS GUIX Studio Information Disclosure...

CVE-2022-30177

Azure RTOS GUIX Studio Remote Code Execution...

CVE-2022-30179

Azure RTOS GUIX Studio Remote Code Execution...

CVE-2022-30178

Azure RTOS GUIX Studio Remote Code Execution...

CVE-2021-42323

Azure RTOS Information Disclosure...

CVE-2021-42302

Azure RTOS Elevation of Privilege...

CVE-2021-42303

Azure RTOS Elevation of Privilege...

CVE-2021-42304

Azure RTOS Elevation of Privilege...

CVE-2021-42301

Azure RTOS Information Disclosure...

CVE-2021-26444

Azure RTOS Information Disclosure...

CVE-2020-16630

TI’s BLE stack caches and reuses the LTK’s property for a bonded mobile. A LTK can be an unauthenticated-and-no-MITM-protection key created by Just Works or an authenticated-and-MITM-protection key created by Passkey Entry, Numeric Comparison or OOB. Assume that a victim mobile uses secure pairing....

CVE-2018-10881

A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bound access in ext4_get_group_info function, a denial of service, and a system crash by mounting and operating on a crafted ext4 filesystem...

CVE-2002-0793

Hard link and possibly symbolic link following vulnerabilities in QNX RTOS 4.25 (aka QNX4) allow local users to overwrite arbitrary files via (1) the -f argument to the monitor utility, (2) the -d argument to dumper, (3) the -c argument to crttrap, or (4) using the Watcom sample...