41 matches found
EUVD-2023-26920
Malicious code in bioql PyPI...
EUVD-2025-27010
Malicious code in bioql PyPI...
EUVD-2024-30780
Malicious code in bioql PyPI...
EUVD-2024-36131
Malicious code in bioql PyPI...
CVE-2025-32316
In gralloc4, there is a possible out of bounds write due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2025-32316
In gralloc4, there is a possible out of bounds write due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2025-32316
CVE-2025-32316 affects the Android graphics allocator: in gralloc4, a missing bounds check allows an out-of-bounds write, leading to local information disclosure without requiring user interaction or extra privileges. The NVD/Red Hat CNVD entries confirm the same issue; the Android 16 bulletin in...
PT-2025-36238
Name of the Vulnerable Software and Affected Versions: gralloc4 affected versions not specified Description: gralloc4 contains a potential out-of-bounds write due to a missing bounds check. This issue could result in local information disclosure and does not require additional execution privilege...
CVE-2023-22808
An issue was discovered in the Arm Android Gralloc Module. A non-privileged user can read a small portion of the allocator process memory. This affects Bifrost r24p0 through r41p0 before r42p0, Valhall r24p0 through r41p0 before r42p0, and Avalon r41p0 before r42p0...
CVE-2022-20180
In several functions of maligrallocreference.cpp, there is a possible arbitrary code execution due to a missing bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...
CVE-2024-33035
Memory corruption while calculating total metadata size when a very high reserved size is requested by gralloc clients...
CVE-2024-33035
Memory corruption while calculating total metadata size when a very high reserved size is requested by gralloc clients...
CVE-2024-33035 Integer Overflow or Wraparound in Display
Memory corruption while calculating total metadata size when a very high reserved size is requested by gralloc clients...
CVE-2024-33035 Integer Overflow or Wraparound in Display
Memory corruption while calculating total metadata size when a very high reserved size is requested by gralloc clients...
CVE-2024-33035
CVE-2024-33035 describes a memory corruption issue in Qualcomm display/gralloc path: when a very high reserved metadata size is requested, total metadata size calculation can overflow/damage memory. Documented impact is high (local, no user interaction, high confidentiality/integrity/availability...
PT-2024-25080 · Qualcomm · Qualcomm Snapdragon Auto
Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon Auto affected versions not specified Description: Memory corruption occurs when gralloc clients request a very high reserved size for calculating total metadata size. This issue is related to the calculation of total...
Huawei HarmonyOS and EMUI Memory Management Vulnerability
Huawei HarmonyOS is an operating system from Huawei, a Chinese company. It provides a full-scene distributed operating system based on a microkernel.Huawei EMUI is an emotional operating system developed by Huawei based on Android Android. A memory management vulnerability exists in Huawei...
CVE-2024-36503
Memory management vulnerability in the Gralloc module Impact: Successful exploitation of this vulnerability will affect availability...
CVE-2024-36503
Memory management vulnerability in the Gralloc module Impact: Successful exploitation of this vulnerability will affect availability...
CVE-2024-36503
Memory management vulnerability in the Gralloc module Impact: Successful exploitation of this vulnerability will affect availability...