CVE-2024-43047 Use After Free in DSP Service

Memory corruption while maintaining memory maps of HLOS memory...

CVE-2024-23369 Improper Restriction of Operations within the Bounds of a Memory Buffer in HLOS

Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers...

CVE-2024-23369

CVE-2024-23369 describes a memory corruption issue in Qualcomm chipsets triggered when an invalid length is provided for HLOS-facing FRS/UDS buffers. The root cause is a boundary/length handling defect that can affect the memory region when processing those buffers. The CVE is rated with CVSS v3....

CVE-2024-23369 Improper Restriction of Operations within the Bounds of a Memory Buffer in HLOS

Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers...

CVE-2024-43047

Memory corruption while maintaining memory maps of HLOS memory. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

CVE-2024-23356

Memory corruption during session sign renewal request calls in HLOS...

CVE-2024-23357 NULL Pointer Dereference in HLOS

Transient DOS while importing a PKCS8-encoded RSA key with zero bytes modulus...

CVE-2024-23357 NULL Pointer Dereference in HLOS

Transient DOS while importing a PKCS8-encoded RSA key with zero bytes modulus...

CVE-2024-23357

CVE-2024-23357 describes a transient DoS when importing a PKCS#8-encoded RSA key with a zero-byte modulus. Connected documents corroborate a Qualcomm/Android context and indicate remediation via security patches (Android patch levels 2024-08-01/05 and related Qualcomm bulletins). Public exploitat...

CVE-2024-23356 Improper Restriction of Operations within the Bounds of a Memory Buffer in HLOS

Memory corruption during session sign renewal request calls in HLOS...

CVE-2024-23356 Improper Restriction of Operations within the Bounds of a Memory Buffer in HLOS

Memory corruption during session sign renewal request calls in HLOS...

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets, which stems from the HLOS module containing a null pointer dereference vulnerability...

CVE-2024-21461 Double Free in HLOS

Memory corruption while performing finish HMAC operation when context is freed by keymaster...

CVE-2024-21461 Double Free in HLOS

Memory corruption while performing finish HMAC operation when context is freed by keymaster...

CVE-2023-43530

Memory corruption in HLOS while checking for the storage type...

CVE-2023-43528

Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size...

CVE-2023-43530

CVE-2023-43530 describes a memory corruption in HLOS during storage type checks, affecting Qualcomm chipsets. The production impact is described as memory corruption rather than exploitation details in the provided documents. The CVE is referenced across multiple feeds (NVD, Red Hat, NCSC, Androi...

CVE-2023-43530 Integer Overflow or Wraparound in HLOS

Memory corruption in HLOS while checking for the storage type...

CVE-2023-43530 Integer Overflow or Wraparound in HLOS

Memory corruption in HLOS while checking for the storage type...

CVE-2023-43528

CVE-2023-43528 concerns Qualcomm chipsets’ Audio components. Information disclosure occurs when the ADSP payload size returned to HLOS in response to an Audio Stream Manager matrix session is smaller than expected, caused by a mismatch in the ADSP payload size. The vulnerability impacts confident...