78 matches found
CVE-2026-25260 Time-of-check Time-of-use (TOCTOU) Race Condition in DSP Service
Memory Corruption when accessing shared buffers without validation of concurrent user-mode input modifications...
CVE-2026-25259 Out-of-bounds Write in DSP Service
Memory corruption while processing multiple IOCTL command for escape operations...
CVE-2026-25258 Out-of-bounds Read in DSP Service
Memory corruption while processing IOCTL calls for escape operations...
CVE-2026-25258 Out-of-bounds Read in DSP Service
Memory corruption while processing IOCTL calls for escape operations...
CVE-2025-47407 Time-of-check Time-of-use (TOCTOU) Race Condition in DSP Service
Memory corruption while creating a process on the digital signal processor due to allocation failure at the kernel level...
CVE-2025-47406 Buffer Over-read in DSP Service
Information Disclosure while processing IOCTL handler callbacks without verifying buffer size...
CVE-2025-47406
CVE-2025-47406 is a DSP Service buffer over-read vulnerability where information disclosure can occur during processing of IOCTL handler callbacks without verifying the input buffer size. The NVD entries describe the issue as Information Disclosure with a CVSSv3.1 base score of 6.1 (Medium), with...
CVE-2025-47406 Buffer Over-read in DSP Service
Information Disclosure while processing IOCTL handler callbacks without verifying buffer size...
CVE-2026-21380 Use After Free in DSP Service
Memory Corruption when using deprecated DMABUF IOCTL calls to manage video memory...
CVE-2026-21380 Use After Free in DSP Service
Memory Corruption when using deprecated DMABUF IOCTL calls to manage video memory...
CVE-2025-47388
CVE-2025-47388 : Qualcomm chipsets memory corruption occurs when passing pages to the DSP with an unaligned starting address, as described in multiple feeds. The vulnerability affects the DSP service path and could enable a local attacker to corrupt memory, with high impact on confidentiality, in...
CVE-2025-47368 Buffer Over-read in DSP Service
Memory corruption when dereferencing an invalid userspace address in a user buffer during MCDM IOCTL processing...
CVE-2025-47368
CVE-2025-47368 affects Qualcomm DSP Service (Memory corruption in MCDM IOCTL processing when dereferencing an invalid userspace address in a user buffer). The CVSS v3.1 vector indicates a Local, Low-Complexity exploit with Low Privileges Required, no user interaction, and impacts on confidentiali...
PT-2025-44932
Name of the Vulnerable Software and Affected Versions versions prior to 2025 Description A memory corruption issue exists when dereferencing an invalid userspace address in a user buffer during MCDM IOCTL processing. This can lead to a buffer over-read in the DSP Service. Recommendations At the...
CVE-2025-47355 Out-of-bounds Write in DSP Service
Memory corruption while invoking remote procedure IOCTL calls...
CVE-2025-47355 Out-of-bounds Write in DSP Service
Memory corruption while invoking remote procedure IOCTL calls...
CVE-2025-47355
CVE-2025-47355 is described across multiple sources as a memory corruption issue in Qualcomm chipsets caused by memory corruption when invoking remote procedure IOCTL calls. The CVE is listed in the CVE databases as an Out-of-bounds Write in the DSP Service, indicating a memory access issue at th...
CVE-2025-47354 Use After Free in DSP Service
Memory corruption while allocating buffers in DSP service...
CVE-2025-47351 Integer Overflow or Wraparound in DSP Service
Memory corruption while processing user buffers...
CVE-2025-47349
CVE-2025-47349 describes memory corruption in Qualcomm chipsets when processing an escape call, related to an out-of-range pointer offset in the DSP service. The Red Hat/NVD/CVE records corroborate a memory corruption impact with high severity (local, attacker requires low privileges, no user int...