358 matches found
CVE-2024-41024
...
PT-2024-29204 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue allows an untrusted application with access to only a non-secure fastrpc device node to attach to root pd or static PDs if it can make the respective init request. This can...
SUSE CVE-2022-48821
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: avoid double fput on failed usercopy If the copy back to userland fails for the FASTRPCIOCTLALLOCDMABUFF ioctl, we shouldn't assume that 'buf-dmabuf' is still valid. In fact, dmabuffd called fdinstall before, i.e...
UBUNTU-CVE-2022-48821
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: avoid double fput on failed usercopy If the copy back to userland fails for the FASTRPCIOCTLALLOCDMABUFF ioctl, we shouldn't assume that 'buf-dmabuf' is still valid. In fact, dmabuffd called fdinstall before, i.e...
CVE-2022-48821
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: avoid double fput on failed usercopy If the copy back to userland fails for the FASTRPCIOCTLALLOCDMABUFF ioctl, we shouldn't assume that 'buf-dmabuf' is still valid. In fact, dmabuffd called fdinstall before, i.e...
CVE-2022-48821 misc: fastrpc: avoid double fput() on failed usercopy
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: avoid double fput on failed usercopy If the copy back to userland fails for the FASTRPCIOCTLALLOCDMABUFF ioctl, we shouldn't assume that 'buf-dmabuf' is still valid. In fact, dmabuffd called fdinstall before, i.e...
CVE-2022-48821 misc: fastrpc: avoid double fput() on failed usercopy
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: avoid double fput on failed usercopy If the copy back to userland fails for the FASTRPCIOCTLALLOCDMABUFF ioctl, we shouldn't assume that 'buf-dmabuf' is still valid. In fact, dmabuffd called fdinstall before, i.e...
CVE-2022-48821
In CVE-2022-48821, the Linux kernel misc/fastrpc path fixes a use-after-free: if FASTRPC_IOCTL_ALLOC_DMA_BUFF copy-back to userland fails, the code previously called dma_buf_put() on a buffer no longer owned, risking a stale fd entry. The remediation avoids dma_buf_put() in that failure path and ...
CVE-2022-48821 misc: fastrpc: avoid double fput() on failed usercopy
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: avoid double fput on failed usercopy If the copy back to userland fails for the FASTRPCIOCTLALLOCDMABUFF ioctl, we shouldn't assume that 'buf-dmabuf' is still valid. In fact, dmabuffd called fdinstall before, i.e...
CVE-2023-43554
Memory corruption while processing IOCTL handler in FastRPC...
CVE-2023-43554 Improper Restriction of Operations withing the Bounds of a Memory Buffer in DSP Services
Memory corruption while processing IOCTL handler in FastRPC...
CVE-2023-43554
CVE-2023-43554 concerns memory corruption during IOCTL processing in Qualcomm FastRPC, with additional notes of a related memory corruption in Qualcomm DSP firmware’s IOCTL handling. The CVE descriptions indicate a local attacker with low exploit complexity could potentially cause high-impact con...
CVE-2023-43554 Improper Restriction of Operations withing the Bounds of a Memory Buffer in DSP Services
Memory corruption while processing IOCTL handler in FastRPC...
The vulnerability of the fastrpc_internal_mem_unmap() function in the DSP microprogramming system of Qualcomm’s embedded chips allows a hacker to execute arbitrary code.
The vulnerability of the fastrpcinternalmemunmap function in the DSP microprogramming system of Qualcomm’s embedded chips is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
CVE-2023-33078
Information Disclosure while processing IOCTL request in FastRPC...
Information disclosure
Information Disclosure while processing IOCTL request in FastRPC...
CVE-2023-33078 Buffer Over-read in DSP Services
Information Disclosure while processing IOCTL request in FastRPC...
CVE-2023-33078 Buffer Over-read in DSP Services
Information Disclosure while processing IOCTL request in FastRPC...
CVE-2023-33078
CVE-2023-33078 affects Qualcomm FastRPC: information disclosure during processing of an IOCTL request on Qualcomm chipsets. Root cause described as information leakage in FastRPC IOCTL handling; impact is Confidentiality ( HIGH ), with Local access as attack vector per NVD metrics. Connected docu...
PT-2024-12398 · Fastrpc · Fastrpc
Name of the Vulnerable Software and Affected Versions: FastRPC affected versions not specified Description: The issue is related to Information Disclosure while processing IOCTL request in FastRPC. Recommendations: At the moment, there is no information about a newer version that contains a fix f...