Azure Linux 3.0 Security Update: kernel (CVE-2024-46804)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46804 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add array index check f...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46818)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46818 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check gpioid before use...

OPENSUSE-SU-2025:0053-1 Security update for dcmtk

This update for dcmtk fixes the following issues: Update to 3.6.9. See DOCS/CHANGES.368 for the full list of changes Security issues fixed: - CVE-2024-27628: Fixed buffer overflow via the EctEnhancedCT method boo1227235 - CVE-2024-34508: Fixed a segmentation fault via an invalid DIMSE message...

CVE-2021-35072

Possible buffer overflow due to improper validation of array index while processing external DIAG command in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables...

CVE-2022-25695

Memory corruption in MODEM due to Improper Validation of Array Index while processing GSTK Proactive commands in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdrago...

CVE-2022-25690

Information disclosure in WLAN due to improper validation of array index while parsing crafted ANQP action frames in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile,...

CVE-2022-46152

OP-TEE Trusted OS is the secure side implementation of OP-TEE project, a Trusted Execution Environment. Versions prior to 3.19.0, contain an Improper Validation of Array Index vulnerability. The function cleanupshmrefs is called by both entryinvokecommand and entryopensession. The commands...

CVE-2022-22099

Memory corruption in multimedia due to improper validation of array index in Snapdragon Auto...

CVE-2022-40539

Memory corruption in Automotive Android OS due to improper validation of array index...

CVE-2024-52333

An improper array index validation vulnerability exists in the determineMinMax functionality of OFFIS DCMTK 3.6.8. A specially crafted DICOM file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability...

CVE-2024-21522

All versions of the package audify are vulnerable to Improper Validation of Array Index when frameSize is provided to the new OpusDecoder.decode or new OpusDecoder.decodeFloat functions it is not checked for negative values. This can lead to a process crash...

CVE-2024-47796

An improper array index validation vulnerability exists in the nowindow functionality of OFFIS DCMTK 3.6.8. A specially crafted DICOM file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability...

CVE-2024-49843 Improper Validation of Array Index in Graphics_Linux

Memory corruption while processing IOCTL from user space to handle GPU AHB bus error...

CVE-2024-49837

CVE-2024-49837 affects Qualcomm chipsets; memory corruption occurs when reading CPU state data during guest VM suspend in affected hardware. Root cause described as improper handling during VM suspend that can corrupt memory, with CVSS 3.1 base score 7.8 (High impact, local access, low attack com...

CVE-2024-49837 Improper Validation of Array Index in Automotive OS Platform

Memory corruption while reading CPU state data during guest VM suspend...

CVE-2024-49833 Improper Validation of Array Index in Camera

Memory corruption can occur in the camera when an invalid CID is used...

CVE-2024-49833 Improper Validation of Array Index in Camera

Memory corruption can occur in the camera when an invalid CID is used...

CVE-2024-49833

CVE-2024-49833 is a memory corruption vulnerability in the camera triggered by an invalid CID, reported across Qualcomm components and Android security bulletins. Affected area is the camera stack from Qualcomm—details cite memory corruption as the underlying flaw with high impact (C:H, I:H, A:H)...

CVE-2024-49832 Improper Validation of Array Index in Camera

Memory corruption in Camera due to unusually high number of nodes passed to AXI port...

CVE-2024-49832

CVE-2024-49832 concerns Qualcomm camera hardware. The root cause is memory corruption caused by an unusually high number of nodes passed to the AXI port, enabling memory corruption in the Camera subsystem. The CVSS v3.1 metrics indicate local exploitation with low privileges and no user interacti...