CVE-2024-45579 Improper Input Validation in Camera Driver

Memory corruption may occur when invoking IOCTL calls from userspace to the camera kernel driver to dump request information, due to a missing memory requirement check...

CVE-2024-45579

CVE-2024-45579 concerns memory corruption that may occur when invoking IOCTL calls from userspace to the camera kernel driver due to a missing memory requirement check. The issue is described across multiple sources as an input validation/memory handling flaw in Qualcomm camera-related kernel cod...

CVE-2024-45579 Improper Input Validation in Camera Driver

Memory corruption may occur when invoking IOCTL calls from userspace to the camera kernel driver to dump request information, due to a missing memory requirement check...

CVE-2024-45578 Improper Validation of Array Index in Camera Driver

Memory corruption while acquire and update IOCTLs during IFE output resource ID validation...

CVE-2024-45577

The CVE-2024-45577 entry concerns memory corruption in Qualcomm camera kernel driver triggered by user-space IOCTL calls to dump request information. Affected component: camera kernel driver in Qualcomm chipsets (unspecified models in the documents). Root cause: improper handling of IOCTL request...

CVE-2024-45577 Improper Input Validation in Camera Driver

Memory corruption while invoking IOCTL calls from userspace to camera kernel driver to dump request information...

PT-2025-19855 · Qualcomm · Snapdragon +14

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue involves memory corruption that occurs during the acquisition and update of IOCTLs, specifically when validating the output resource ID for IFE. This corruption happens due to...

PT-2025-19854 · Qualcomm · Snapdragon +10

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue involves memory corruption that occurs when invoking IOCTL calls from userspace to the camera kernel driver in order to dump request information. This is caused by an error in the...

PT-2025-19856 · Qualcomm · Snapdragon +10

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: Memory corruption may occur due to a missing memory requirement check when invoking IOCTL calls from userspace to the camera kernel driver to dump request information. Recommendations: At th...

PT-2025-19878 · Qualcomm · Snapdragon +12

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue is related to memory corruption that occurs while processing an IOCTL request. This happens when the buffer significantly exceeds the command argument limit. Recommendations: At th...

PT-2025-19860 · Qualcomm · Snapdragon +12

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue involves memory corruption that occurs when processing an IOCTL call to set mixer controls. This can be described in Spanish as corrupción de memoria al procesar una llamada IOCTL...

PT-2025-19881 · Qualcomm · Snapdragon +17

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue involves memory corruption during image encoding processing. This occurs when the input buffer length is 0 in the IOCTL call. Recommendations: At the moment, there is no informatio...

PT-2025-19882 · Qualcomm · Snapdragon +30

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue is related to memory corruption that occurs during image encoding processing when the configuration is NULL in the IOCTL parameter. This can lead to unspecified consequences...

PT-2025-19858 · Qualcomm · Snapdragon +6

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue involves memory corruption that occurs when handling multiple IOCTL calls from userspace to operate DMA operations. This can lead to unstable system behavior. No information is...

CVE-2023-53035

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix kernel-infoleak in nilfsioctlwrapcopy The ioctl helper function nilfsioctlwrapcopy, which exchanges a metadata array to/from user space, may copy uninitialized buffer regions to user space memory for read-only ioctl...

CVE-2023-53143

In the Linux kernel, the following vulnerability has been resolved: ext4: fix another off-by-one fsmap error on 1k block filesystems Apparently syzbot figured out that issuing this FSMAP call: struct fsmaphead cmd = .fmhcount = ...; .fmhkeys = .fmrdevice = / ext4 dev /, .fmrphysical = 0, ,...

SUSE CVE-2023-53035

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix kernel-infoleak in nilfsioctlwrapcopy The ioctl helper function nilfsioctlwrapcopy, which exchanges a metadata array to/from user space, may copy uninitialized buffer regions to user space memory for read-only ioctl...

CVE-2023-53059

In the Linux kernel, the following vulnerability has been resolved: platform/chrome: crosecchardev: fix kernel data leak from ioctl It is possible to peep kernel page's data by providing larger insize in struct croseccommand1 when invoking EC host commands. Fix it by using zeroed memory. 1:...

CVE-2023-53059

In the Linux kernel, the following vulnerability has been resolved: platform/chrome: crosecchardev: fix kernel data leak from ioctl It is possible to peep kernel page's data by providing larger insize in struct croseccommand1 when invoking EC host commands. Fix it by using zeroed memory. 1:...

DEBIAN-CVE-2023-53059

In the Linux kernel, the following vulnerability has been resolved: platform/chrome: crosecchardev: fix kernel data leak from ioctl It is possible to peep kernel page's data by providing larger insize in struct croseccommand1 when invoking EC host commands. Fix it by using zeroed memory. 1:...