CVE-2025-47380 Untrusted Pointer Dereference in Camera

Memory corruption while preprocessing IOCTLs in sensors...

CVE-2025-47380

CVE-2025-47380 is a memory corruption vulnerability in the sensors component that occurs during preprocessing of IOCTLs. Affected: the sensors functionality; root cause reported as memory corruption during IOCTL preprocessing. Documented impact indicates high severity with full confidentiality, i...

CVE-2025-47344 Time-of-check Time-of-use (TOCTOU) Race Condition in Camera Driver

Memory corruption while handling sensor utility operations...

CVE-2025-47344 Time-of-check Time-of-use (TOCTOU) Race Condition in Camera Driver

Memory corruption while handling sensor utility operations...

CVE-2025-47344

CVE-2025-47344 is linked to memory corruption in sensor utility handling (affecting Qualcomm chipsets and related camera/sensor drivers). The Red Hat, NVD, and CVE lists describe a local exploit surface with high impact to confidentiality, integrity, and availability, caused by issues in processi...

CVE-2025-47337 Use After Free in Camera Driver

Memory corruption while accessing a synchronization object during concurrent operations...

CVE-2025-47337 Use After Free in Camera Driver

Memory corruption while accessing a synchronization object during concurrent operations...

CVE-2025-47337

CVE-2025-47337 involves a memory corruption issue that occurs when accessing a synchronization object during concurrent operations. Multiple connected sources corroborate the description across vendors and schemes (e.g., Red Hat, NVD, CNNVD, CIRCL, and others), with no public exploit details prov...

CVE-2025-47336 Use After Free in Camera Driver

Memory corruption while performing sensor register read operations...

CVE-2025-47336 Use After Free in Camera Driver

Memory corruption while performing sensor register read operations...

CVE-2025-47336

CVE-2025-47336 describes a memory corruption issue occurring when performing sensor register read operations. Connected sources broadly associate this with Qualcomm chipsets and describe the vulnerability as a memory corruption affecting sensor register reads, with a local attack vector and high ...

CVE-2025-47335 Buffer Copy Without Checking Size of Input in Camera Driver

Memory corruption while parsing clock configuration data for a specific hardware type...

CVE-2025-47335 Buffer Copy Without Checking Size of Input in Camera Driver

Memory corruption while parsing clock configuration data for a specific hardware type...

CVE-2025-47335

CVE-2025-47335 corresponds to a memory corruption vulnerability in Qualcomm chipsets triggered while parsing clock configuration data for a specific hardware type. The issue is described across multiple feeds (NVD/Red Hat/CNNVD/etc.) as memory corruption during clock config parsing, with CVSSv3.1...

CVE-2025-47334 Buffer Copy Without Checking Size of Input in Camera Driver

Memory corruption while processing shared command buffer packet between camera userspace and kernel...

CVE-2025-47334 Buffer Copy Without Checking Size of Input in Camera Driver

Memory corruption while processing shared command buffer packet between camera userspace and kernel...

CVE-2025-47334

CVE-2025-47334 affects Qualcomm chipsets, specifically the camera driver’s component that processes shared command buffer packets between camera userspace and the kernel. The root cause is memory corruption in this path, as described across multiple feeds (NVD, Red Hat, CNNVD, etc.). Confirmed im...

CVE-2025-47332 Time-of-check Time-of-use (TOCTOU) Race Condition in Camera Driver

Memory corruption while processing a config call from userspace...

CVE-2025-47332 Time-of-check Time-of-use (TOCTOU) Race Condition in Camera Driver

Memory corruption while processing a config call from userspace...

CVE-2025-47332

CVE-2025-47332 corresponds to a memory corruption issue reported in Qualcomm chipsets when processing a configuration call from userspace. Public documents (NVD entry and multiple CVE feeds) assign high impact to confidentiality, integrity, and availability, with a local attack vector and no user...