The vulnerability of Android and Linux operating systems in Qualcomm embedded devices, related to the execution of operations outside of the buffer in memory, allows attackers to trigger system failures.

The vulnerability of Android and Linux operating systems in Qualcomm embedded devices lies in the fact that operations are performed outside of the buffer in memory. Exploiting this vulnerability can allow an attacker to trigger a service failure by sending specially crafted DRM requests...

CVE-2022-45412

When resolving a symlink such as file:///proc/self/fd/1, an error message may be produced where the symlink was resolved to a string containing unitialized memory in the buffer. This bug only affects Thunderbird on Unix-based operated systems Android, Linux, MacOS. Windows is unaffected.. This...

Samsung Mobile Device Buffer Overflow Vulnerability (CNVD-2020-40853)

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. Samsung mobile devices have security vulnerabilities that can be exploited by attackers to cause buffer overflows or heap overflows, among other things...

Unspecified Vulnerability in Samsung Mobile Devices (CNVD-2020-32790)

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. Samsung mobile devices have a security vulnerability that can be exploited by attackers to perform arbitrary memory mapping...

Samsung Mobile Device Authorization Issue Vulnerability (CNVD-2020-31814)

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. Samsung mobile devices have an authorization issue vulnerability that can be exploited by an attacker to bypass the SIM lock function...

Samsung Mobile Device Information Disclosure Vulnerability (CNVD-2020-31258)

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. Samsung mobile devices have an information disclosure vulnerability that can be exploited by attackers to obtain sensitive information...

Samsung Mobile Device Injection Vulnerability

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. Samsung mobile devices suffer from an injection vulnerability that can be exploited by attackers to cause arbitrary code execution...

Unspecified Vulnerability in Samsung Mobile Devices (CNVD-2020-31812)

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. Samsung mobile devices have a security vulnerability that can be exploited by attackers to bypass lock screen restrictions...

Samsung Mobile Device Buffer Overflow Vulnerability (CNVD-2020-32804)

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. The Samsung mobile device buffer overflow vulnerability can be exploited by an attacker to execute arbitrary code on the system with the help of a specially crafted...

Samsung Mobile Device Input Validation Error Vulnerability (CNVD-2020-32800)

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. An input validation error vulnerability exists in Samsung mobile devices, which can be exploited by attackers to corrupt memory with the help of incorrectly formatt...

Samsung Mobile Device Buffer Overflow Vulnerability (CNVD-2020-33784)

Android is a free and open source operating system from Google based on the Linux kernel without GNU components. A buffer overflow vulnerability exists in Samsung mobile devices, which can be exploited by an attacker to execute arbitrary code...

Samsung Mobile Device Buffer Overflow Vulnerability (CNVD-2020-32861)

Android is a free and open source operating system from Google based on the Linux kernel without GNU components. A buffer overflow vulnerability exists in Samsung mobile devices, which can be exploited by an attacker to execute arbitrary code on the system...

CVE-2017-15851

CVE-2017-15851 affects Qualcomm Camerav2 in Android for MSM (Linux kernel CAF-based) due to a lack of copy_from_user and an information leak in msm_ois_subdev_do_ioctl, causing a camera crash across Android releases. The issue is documented in the Pixel/Nexus bulletin under Camerav2 (CVE-2017-158...

CVE-2017-17765

In all Qualcomm products with Android releases from CAF using the Linux kernel, multiple values received from firmware are not properly validated in wmagetllstatsextbuf and are used to allocate the sizes of buffers and may be vulnerable to integer overflow leading to buffer overflow...

CVE-2017-11001

In all Qualcomm products with Android releases from CAF using the Linux kernel, the length of the MAC address is not checked which may cause out of bounds read...

Null pointer dereference

In all Qualcomm products with Android releases from CAF using the Linux kernel, if a pointer argument coming from userspace is invalid, a driver may use an uninitialized structure to log an error message...

CVE-2017-9685

In all Qualcomm products with Android releases from CAF using the Linux kernel, a race condition in a WLAN driver can lead to a Use After Free condition...

CVE-2016-5871

In all Qualcomm products with Android releases from CAF using the Linux kernel, an integer overflow to buffer overflow vulnerability exists when loading an image file...

Design/Logic Flaw

In TrustZone in all Android releases from CAF using the Linux kernel, an Information Exposure Through Timing Discrepancy vulnerability could potentially exist...