5907 matches found
CVE-2024-43059
Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node...
CVE-2024-45580
Memory corruption while handling multuple IOCTL calls from userspace for remote invocation...
CVE-2024-43055
Memory corruption while processing camera use case IOCTL call...
CVE-2024-45580 Use After Free in DSP Service
Memory corruption while handling multuple IOCTL calls from userspace for remote invocation...
CVE-2024-45580
CVE-2024-45580: A memory corruption issue in Qualcomm kernel due to handling multiple IOCTL calls from user space for remote invocation. Affected: Qualcomm components using the kernel/ DSP service stack where IOCTL processing could lead to arbitrary memory corruption. Impact as described: high fo...
CVE-2024-45580 Use After Free in DSP Service
Memory corruption while handling multuple IOCTL calls from userspace for remote invocation...
CVE-2024-43059 Use After Free in Automotive Multimedia
Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node...
CVE-2024-43059 Use After Free in Automotive Multimedia
Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node...
CVE-2024-43059
CVE-2024-43059 describes a memory corruption flaw in Qualcomm chipsets when invoking IOCTL calls from user space to the HGSL memory node. The issue is triggered by use-space IOCTL handling and has a CVSSv3.1 score of 7.8 (High) with LOCAL attack vector, LOW attack complexity, and LOW privileges r...
CVE-2024-43055 Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Camera_Linux
Memory corruption while processing camera use case IOCTL call...
CVE-2024-43055 Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Camera_Linux
Memory corruption while processing camera use case IOCTL call...
CVE-2024-43055
CVE-2024-43055 affects Qualcomm chipsets and is caused by memory corruption when handling a camera use case IOCTL call. The public records describe this as a memory corruption issue in the camera IOCTL processing, but do not provide concrete product version(s) or a stated remediation beyond gener...
PT-2025-23585 · Qualcomm · Snapdragon +18
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue involves memory corruption during the processing of IOCTL commands. This occurs when the buffer in write loopback mode is accessed after being freed. Recommendations: At the moment...
Qualcomm Chipsets 资源管理错误漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A resource management error vulnerability exists in Qualcomm Chipsets that stems from memory corruption when processing multiple IOCTL calls in user space...
PT-2025-14321 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A NULL pointer dereference issue was found in the Linux kernel, specifically in the KFD queue. This issue was encountered through KFD IOCTL Fuzzing when calling the kfd queue acquire...
CVE-2025-21814 ptp: Ensure info->enable callback is always set
In the Linux kernel, the following vulnerability has been resolved: ptp: Ensure info-enable callback is always set The ioctl and sysfs handlers unconditionally call the -enable callback. Not all drivers implement that callback, leading to NULL dereferences. Example of affected drivers: ptps390.c,...
AZL-68973 CVE-2025-21738 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: ata: libata-sff: Ensure that we cannot write outside the allocated buffer reveliofuzzing reported that a SCSIIOCTLSENDCOMMAND ioctl with outlen set to 0xd42, SCSI command set to ATA16 PASS-THROUGH, ATA command set to ATANOP, and...
SUSE CVE-2021-47634
In the Linux kernel, the following vulnerability has been resolved: ubi: Fix race condition between ctrlcdevioctl and ubicdevioctl Hulk Robot reported a KASAN report about use-after-free: ================================================================== BUG: KASAN: use-after-free in...
SUSE CVE-2022-49122
In the Linux kernel, the following vulnerability has been resolved: dm ioctl: prevent potential spectre v1 gadget It appears like cmd could be a Spectre v1 gadget as it's supplied by a user and used as an array index. Prevent the contents of kernel memory from being leaked to userspace via...
SUSE CVE-2022-49137
In the Linux kernel, the following vulnerability has been resolved: drm/amd/amdgpu/amdgpucs: fix refcount leak of a dmafence obj This issue takes place in an error path in amdgpucsfencetohandleioctl. When info-in.what falls into default case, the function simply returns -EINVAL, forgetting to...