CVE-2024-45544

CVE-2024-45544 is a memory corruption issue in Qualcomm hardware triggered by IOCTL processing for adding a route entry. Documented as affecting Qualcomm kernel components; vector is Local with Low privileges required, no user interaction. Impact is Confidentiality: Low, Integrity: High, Availabi...

CVE-2024-45540

CVE-2024-45540 is a memory corruption vulnerability in Qualcomm chipset components related to processing user-space IOCTL mapped buffer requests. Multiple sources (NVD, Red Hat, CVE List, CNNVD, CIRCL) report the issue as memory corruption tied to an IOCTL map-buffer path, with the Pixel Watch bu...

CVE-2024-45540 Use After Free in HLOS

Memory corruption while invoking IOCTL map buffer request from userspace...

CVE-2024-45540 Use After Free in HLOS

Memory corruption while invoking IOCTL map buffer request from userspace...

CVE-2024-43058

CVE-2024-43058 corresponds to a memory corruption issue occurring when Qualcomm chipset IOCTL calls are processed. The vulnerability affects Qualcomm chipsets and is attributed to a faulty IOCTL handling path, leading to potential impact on confidentiality, integrity, and availability as indicate...

CVE-2024-43058 Incorrect Type Conversion or Cast in Multimedia Frameworks

Memory corruption while processing IOCTL calls...

CVE-2024-43058 Incorrect Type Conversion or Cast in Multimedia Frameworks

Memory corruption while processing IOCTL calls...

PT-2025-15211 · Qualcomm · Snapdragon

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue involves memory corruption that occurs when an IOCTL call is invoked from user-space to read board data. Recommendations: At the moment, there is no information about a newer versi...

PT-2025-15188 · Qualcomm · Snapdragon +6

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: Memory corruption occurs while processing IOCTL calls. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability...

PT-2025-15213 · Qualcomm · Qualcomm Snapdragon Compute

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon Compute affected versions not specified Description: The issue is related to memory corruption that occurs when an IOCTL call is invoked from user-space to write board data to the WLAN driver. Recommendations: At the momen...

PT-2025-15210 · Qualcomm · Snapdragon +25

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue involves memory corruption that occurs when processing memory map or unmap IOCTL operations simultaneously. This happens due to a race condition where one thread calls hfastrpc mem...

PT-2025-15192 · Qualcomm · Snapdragon

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue involves memory corruption that occurs when invoking an IOCTL map buffer request from userspace. This can potentially lead to unintended system behavior. Recommendations: At the...

PT-2025-15209 · Qualcomm · Snapdragon +22

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: Memory corruption may occur while initiating two IOCTL calls simultaneously to create processes from two different threads. Recommendations: At the moment, there is no information about a...

PT-2025-15214 · Qualcomm · Qualcomm Snapdragon Compute

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon Compute affected versions not specified Description: The issue is related to memory corruption that occurs when an IOCTL call is invoked from user-space to write board data to the WLAN driver. Recommendations: At the momen...

SUSE CVE-2025-21940

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix NULL Pointer Dereference in KFD queue Through KFD IOCTL Fuzzing we encountered a NULL pointer derefrence when calling kfdqueueacquirebuffers. cherry picked from commit 049e5bf3c8406f87c3d8e1958e0a16804fa1d530...

DEBIAN-CVE-2025-21996

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: fix uninitialized size issue in radeonvcecsparse On the off chance that command stream passed from userspace via ioctl call to radeonvcecsparse is weirdly crafted and first command to execute is to encode case...

UBUNTU-CVE-2025-22001

In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Fix integer overflow in qaicvalidatereq These are u64 variables that come from the user via qaicattachsliceboioctl. Use checkaddoverflow to ensure that the math doesn't have an integer wrapping bug...

CVE-2025-22001 accel/qaic: Fix integer overflow in qaic_validate_req()

In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Fix integer overflow in qaicvalidatereq These are u64 variables that come from the user via qaicattachsliceboioctl. Use checkaddoverflow to ensure that the math doesn't have an integer wrapping bug...

CVE-2025-21996 drm/radeon: fix uninitialized size issue in radeon_vce_cs_parse()

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: fix uninitialized size issue in radeonvcecsparse On the off chance that command stream passed from userspace via ioctl call to radeonvcecsparse is weirdly crafted and first command to execute is to encode case...

UBUNTU-CVE-2025-21950

In the Linux kernel, the following vulnerability has been resolved: drivers: virt: acrn: hsm: Use kzalloc to avoid info leak in pmcmdioctl In the "pmcmdioctl" function, three memory objects allocated by kmalloc are initialized by "hcallgetcpustate", which are then copied to user space. The...