CVE-2022-25663

Possible buffer overflow due to lack of buffer length check during management frame Rx handling lead to denial of service in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity...

CVE-2022-25660

Memory corruption due to double free issue in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile...

CVE-2022-25664

The CVE-2022-25664 entry concerns information disclosure in Qualcomm Snapdragon GPUs during data reads. Concrete details from connected PT-2022-17445 indicate affected Qualcomm Snapdragon products across Auto, Compute, Connectivity, Consumer IoT, Industrial IoT, Mobile, and Wearables, with the ro...

CVE-2022-25660

CVE-2022-25660 is a memory corruption vulnerability described as a double-free issue in the kernel affecting Qualcomm Snapdragon platforms (Snapdragon Auto, Compute, Consumer IOT, Industrial IOT, Mobile). The root cause is a kernel double-free that can impact memory management, with a CVSS score ...

CVE-2022-25665

Summary of CVE-2022-25665 : This is an information disclosure caused by a buffer over-read in the kernel observed on Qualcomm Snapdragon platforms (Auto/Compute/Consumer IoT/Mobile). The vulnerability is categorized as a kernel-level issue affecting Qualcomm components used in Pixel devices (clos...

CVE-2022-25662

CVE-2022-25662 : The vulnerability is an information-disclosure flaw caused by an untrusted pointer dereference in the kernel affecting Qualcomm Snapdragon components (Auto, Compute, Connectivity, Consumer IOT, Industrial IOT, Mobile, Wearables). The issue is described across multiple sources as ...

PT-2022-15222 · Qualcomm · Snapdragon Auto +7

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon affected versions not specified Description: The issue is related to a denial of service in the BOOT process when the partition size for a particular partition is requested. This occurs due to an integer overflow when bloc...

PT-2022-17441 · Qualcomm · Snapdragon

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon affected versions not specified Description: The issue is related to memory corruption due to a double free problem in the kernel of Snapdragon products, including Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer...

CVE-2022-22078

Denial of service in BOOT when partition size for a particular partition is requested due to integer overflow when blocks are calculated in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables...

CVE-2022-25661

Memory corruption due to untrusted pointer dereference in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile...

CVE-2022-25665

Information disclosure due to buffer over read in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile...

CVE-2022-25664

Information disclosure due to exposure of information while GPU reads the data in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables...

CVE-2022-25663

Possible buffer overflow due to lack of buffer length check during management frame Rx handling lead to denial of service in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity...

CVE-2022-22078

CVE-2022-22078 affects Qualcomm Snapdragon platforms (Auto, Compute, Connectivity, Consumer IOT, Industrial IOT, Mobile, Wearables). The issue is a DoS in the BOOT process due to an integer overflow when calculating partition blocks for a specific partition size. This vulnerability’s root cause i...

Zutty: Arbitrary Code Execution

Background Zutty is an X terminal emulator rendering through OpenGL ES Compute Shaders. Description Zutty does not correctly handle invalid DECRQSS commands, which can be exploited to run arbitrary commands in the terminal. Impact Untrusted text written to the Zutty terminal can achieve arbitrary...

CVE-2022-22058

CVE-2022-22058 describes a memory corruption due to a use-after-free in the kernel when handling ION handles, impacting Qualcomm Snapdragon-based devices (e.g., Snapdragon Auto, Compute, Connectivity, Consumer Electronics Connectivity, Consumer IoT, Industrial IoT, Mobile, Voice & Music, Wearable...

Security Bulletin: IBM WebSphere Extended Deployment Compute Grid Vulnerability (CVE-2013-4039)

Abstract Potential security vulnerability fixed in IBM WebSphere Extended Deployment Compute Grid V8.0.0.3 Content VULNERABILITY DETAILS: CVE ID:CVE-2013-4039PM84760 DESCRIPTION: WebSphere Extended Deployment Compute Grid could allow a remote attacker to obtain sensitive information and exploit...

Denial Of Service (DoS)

tensorflow is vulnerable to denial of service. The vulnerability exists in Compute function in batchkernels.cc because Unbatch Op kernel doesn't properly check if the input argument is a scalar which allows an attacker to send non-scalar input IDs causing an application crash...

Denial Of Service (DoS)

tensorflow is vulnerable to denial of service. The vulnerability exists in Compute function in parameterizedtruncatednormalop.cc because ParameterizedTruncatedNormal assumes shape is of type int32 only which allows an attacker to send shapes of mismatched types causing an application crash...

Denial Of Service (DoS)

tensorflow is vulnerable to denial of service. The vulnerability exists Compute function of convgradinputops.h because the CPU/GPU kernels are not properly handled for empty outbackprop inputs which allows an attacker to cause an application crash by sending malicious inputs...