CVE-2025-47407

Memory corruption while creating a process on the digital signal processor due to allocation failure at the kernel level...

CVE-2026-25260 Time-of-check Time-of-use (TOCTOU) Race Condition in DSP Service

Memory Corruption when accessing shared buffers without validation of concurrent user-mode input modifications...

CVE-2026-25259 Out-of-bounds Write in DSP Service

Memory corruption while processing multiple IOCTL command for escape operations...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: i2c: designware: amdisp: Fixed the race condition involving the resume-probe function. The race condition was identified in kernel version 7.0, with the commit code 38fa29b01a6a „i2c: designware: Combine the init functions“...

UBUNTU-CVE-2026-43412

In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: qdsp6: Fix q6apm remove ordering during ADSP stop and start During ADSP stop and start, the kernel crashes due to the order in which ASoC components are removed. On ADSP stop, the q6apm-audio .remove callback unloads...

SUSE CVE-2026-43204

In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: q6asm: drop DSP responses for closed data streams 'Commit a354f030dbce "ASoC: qcom: q6asm: handle the responses after closing"' attempted to ignore DSP responses arriving after a stream had been closed. However, those...

CVE-2026-43204

A flaw was found in the Linux kernel's ASoC Qualcomm qcom q6asm component. This vulnerability occurs when the system continues to process Digital Signal Processor DSP responses for data streams that have already been closed. An attacker could potentially exploit this by sending specific DSP...

CVE-2026-43204

In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: q6asm: drop DSP responses for closed data streams 'Commit a354f030dbce "ASoC: qcom: q6asm: handle the responses after closing"' attempted to ignore DSP responses arriving after a stream had been closed. However, those...

PT-2026-37544

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the ASoC qcom q6asm component where DSP responses arriving after a data stream had been closed were still being handled. This failure to properly ignore these response...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the q6asm driver failing to properly discard DSP responses with closed data streams, potentially...

CVE-2025-47407

Memory corruption while creating a process on the digital signal processor due to allocation failure at the kernel level...

CVE-2025-47407

CVE-2025-47407 describes a memory corruption in the DSP service during process creation caused by an allocation failure at the kernel level, linked to a TOCTOU race condition. Connected records identify a kernel-level allocation failure as the underlying trigger and the DSP service as the affecte...

CVE-2025-47407 Time-of-check Time-of-use (TOCTOU) Race Condition in DSP Service

Memory corruption while creating a process on the digital signal processor due to allocation failure at the kernel level...

EUVD-2025-209632

Memory corruption while creating a process on the digital signal processor due to allocation failure at the kernel level...

CVE-2025-47407

Memory corruption while creating a process on the digital signal processor due to allocation failure at the kernel level...

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a series of chipset developed by Qualcomm Incorporation. There is a security vulnerability in Qualcomm Chipsets, which stems from the failure to allocate resources at the kernel level, resulting in the creation of processes on the digital signal processor, potentially leadin...

PT-2026-36843

Memory corruption while creating a process on the digital signal processor due to allocation failure at the kernel level...

CVE-2026-21380

CVE-2026-21380 involves memory corruption (use-after-free) in the DSP service when deprecated DMABUF IOCTL calls are used to manage video memory. Documents describe a local, low-privilege attack with no user interaction and high impact to confidentiality, integrity, and availability. Root cause i...

CVE-2025-47388

Memory corruption while passing pages to DSP with an unaligned starting address...

CVE-2025-47388

Memory corruption while passing pages to DSP with an unaligned starting address...