CVE-2026-43412

CVE-2026-43412 pertains to the Linux kernel ASoC Qualcomm qdsp6 driver. The root cause is an incorrect removal order during ADSP stop/start, where q6apm-audio teardown can delete RTDs containing q6apm DAI components before their removal pass, leaving components linked to the card and causing a cr...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010973)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010973 advisory. In the Linux kernel, the following vulnerability has been resolved: cpufreq: qcom-hw: Fix memory leak in qcomcpufreqhwreadlut If cpudev fails to get opp table in...

CVE-2026-23115

In the Linux kernel, the following vulnerability has been resolved: serial: Fix not set tty-port race condition Revert commit bfc467db60b7 "serial: remove redundant ttyportlinkdevice" because the ttyportlinkdevice is not redundant: the tty-port has to be confured before we call uartconfigureport,...

CVE-2019-2236

Null pointer dereference during secure application termination using specific application ids. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice &...

CVE-2022-50637

In the Linux kernel, the following vulnerability has been resolved: cpufreq: qcom-hw: Fix memory leak in qcomcpufreqhwreadlut If "cpudev" fails to get opp table in qcomcpufreqhwreadlut, the program will return, resulting in "table" resource is not released...

DEBIAN-CVE-2022-50637

In the Linux kernel, the following vulnerability has been resolved: cpufreq: qcom-hw: Fix memory leak in qcomcpufreqhwreadlut If "cpudev" fails to get opp table in qcomcpufreqhwreadlut, the program will return, resulting in "table" resource is not released...

UBUNTU-CVE-2022-50637

In the Linux kernel, the following vulnerability has been resolved: cpufreq: qcom-hw: Fix memory leak in qcomcpufreqhwreadlut If "cpudev" fails to get opp table in qcomcpufreqhwreadlut, the program will return, resulting in "table" resource is not released...

CVE-2022-50637

CVE-2022-50637 concerns the Linux kernel cpufreq driver for Qualcomm hardware. The issue is a memory/resource leak in cpufreq_qcom_hw_read_lut() where if cpu_dev fails to obtain the OPP table, the function returns without releasing the allocated table resource. The vulnerability has been resolved...

EUVD-2018-3945

Malware in sbrugna...

CVE-2022-49848 phy: qcom-qmp-combo: fix NULL-deref on runtime resume

In the Linux kernel, the following vulnerability has been resolved: phy: qcom-qmp-combo: fix NULL-deref on runtime resume Commit fc64623637da "phy: qcom-qmp-combo,usb: add support for separate PCSUSB region" started treating the PCSUSB registers as potentially separate from the PCS registers but...

phy: qcom: qmp-usb: fix NULL-deref on runtime suspend

...

The vulnerability of the qcom_llcc_probe() function in the llcc component of Linux kernel allows a hacker to cause a service failure.

The vulnerability of the qcomllccprobe function in the llcc component of Linux kernel relates to the issue of writing operations out of the buffer in memory. Exploiting this vulnerability could allow an attacker to cause a system failure...

Google Android Qualcomm component remote code execution vulnerability (CNVD-2018-12662)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. A remote code execution vulnerability exists in the Google Android Qualcomm component Hardware codec. A remote attacker could exploit this vulnerability to execute code...

The vulnerability of the Android operating system, which allows a hacker to trigger a service failure

The vulnerability of Qualcomm’s hardware video codec in the Android operating system exists due to insufficient checking of input data. Exploiting this vulnerability can allow a malicious actor to trigger a service failure device reboot using a specially crafted file...

CVE-2016-2454

The Qualcomm hardware video codec in Android before 2016-05-01 on Nexus 5 devices allows remote attackers to cause a denial of service reboot via a crafted file, aka internal bug 26221024...

Hardcoded credentials

The Qualcomm hardware video codec in Android before 2016-05-01 on Nexus 5 devices allows remote attackers to cause a denial of service reboot via a crafted file, aka internal bug 26221024...