4 matches found
CVE-2023-53465
CVE-2023-53465 : Linux kernel vulnerability in the SoundWire qcom driver where qcom_swrm_ctrl->pconfig (14 entries) can be written past bounds because indexing starts at 1 instead of 0, corrupting the next struct member. Exploitation is local (per CVSS: 7.1, HIGH impact on availability/Confide...
CVE-2023-53465 soundwire: qcom: fix storing port config out-of-bounds
In the Linux kernel, the following vulnerability has been resolved: soundwire: qcom: fix storing port config out-of-bounds The 'qcomswrmctrl-pconfig' has size of QCOMSDWMAXPORTS 14, however we index it starting from 1, not 0, to match real port numbers. This can lead to writing port config past...
CVE-2025-38486
CVE-2025-38486 concerns a Linux kernel soundwire regression where revert of the qcom set_channel_map API (soundwire: qcom: Add set_channel_map api support) caused kernel instability on Dragonboard 845c (sdm845), including BRK/Fatal exception and a non‑summing trace. Connected reports document spe...
GSD-2022-1007811 soundwire: qcom: check for outanding writes before doing a read
soundwire: qcom: check for outanding writes before doing a read This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.9 by commit...