11 matches found
CVE-2013-2597
CVE-2013-2597 describes a stack-based buffer overflow in the acdb_ioctl function of the acdb audio driver (audio_acdb.c) in Linux kernel 2.6.x and 3.x, used in Qualcomm Code Aurora/QuIC Android contributions for MSM devices. The flaw allows privilege escalation when an attacker can access /dev/ms...
CVE-2013-4739
CVE-2013-4739 concerns the MSM camera driver for the Linux kernel 3.x (used in Qualcomm Innovation Center Android contributions for MSM devices). The description states that an attacker can obtain sensitive information from kernel stack memory via two crafted IOCTLs: MSM_MCR_IOCTL_EVT_GET (driver...
CVE-2013-2595
The CVE-2013-2595 issue affects the MSM camera driver in Linux kernels 2.6.x and 3.x, used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices. The vulnerability stems from the MSM_CAM_IOCTL_SET_MEM_MAP_INFO ioctl exposing an unrestricted mmap interface, enabling a locally ...
CVE-2013-4738
The CVE-2013-4738 entry concerns the MSM camera driver in Linux kernel 3.x (QuIC Android contributions and related products). It describes multiple stack-based buffer overflows that could enable privilege escalation when an attacker issues crafted IOCTLs: VIDIOC_MSM_VPE_DEQUEUE_STREAM_BUFF_INFO a...
CVE-2013-6123
CVE-2013-6123 affects the MSM camera driver in the Linux kernel 3.x (MSM CAM server). The root cause is multiple array index errors in msm_cam_server.c, related to handling of camera device-node input, involving the functions msm_ctrl_cmd_done , msm_ioctl_server , and msm_server_send_ctrl . This ...
CVE-2013-6392
CVE-2013-6392 affects the Genlock driver for the Linux kernel 3.x (Genlock, used in Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products). The issue is that genlock_dev_ioctl fails to properly initialize a data structure, enabling local users to read sensitive ...
CVE-2013-6124
The CVE-2013-6124 entry describes a local privilege escalation in Code Aurora Forum (CAF) Android 4.1.x–4.4.x where Qualcomm Innovation Center (QuIC) init scripts allow a symlink attack to modify file metadata. Specifically, during device startup, init shell scripts run with root privileges and m...
CVE-2013-4736
CVE-2013-4736 concerns multiple integer overflows in the JPEG engine drivers of the MSM camera stack used with Linux kernel 2.6.x/3.x, as part of Qualcomm QuIC Android contributions for MSM devices. The vulnerability arises during handling of ioctl command payloads in various components (camera_v...
CVE-2014-0972
The CVE-2014-0972 entry concerns the kgsl graphics driver for Linux kernel 3.x (QuIC Android contributions for MSM devices). The vulnerability allows local users to bypass protection of IOMMU context registers by sending a crafted GPU command stream, enabling selection of a custom page table and ...
CVE-2013-2598
The CVE affects the Little Kernel (LK) bootloader used in Qualcomm Innovation Center Android contributions for MSM devices. A vulnerability in app/aboot/aboot.c allows overwriting the bootloader’s signature-verification code when a crafted boot-image load-destination header specifies memory locat...
CVE-2013-2599
CVE-2013-2599 refers to a Code Aurora Forum (CAF) patch in Android 4.1.x–4.3.x that modifies NativeDaemonConnector.java. The vulnerability arises from debug logging enabled by this patch, allowing a logcat command to reveal sensitive disk-encryption passwords. Documents from NVD/NIST describe the...