279 matches found
CVE-2024-43059
Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node.
CVE-2024-45581
Memory corruption while sound model registration for voice activation with audio kernel driver.
CVE-2024-49842
Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions.
CVE-2024-53012
Memory corruption may occur due to improper input validation in clock device.
CVE-2021-35114
Improper buffer initialization on the backend driver can lead to buffer overflow in Snapdragon Auto
CVE-2022-33218
Memory corruption in Automotive due to improper input validation.
CVE-2024-33011
Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero.
CVE-2024-33018
Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping action frame.
CVE-2024-33019
Transient DOS while parsing the received TID-to-link mapping action frame.
CVE-2024-33025
Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
CVE-2024-33056
Memory corruption when allocating and accessing an entry in an SMEM partition continuously.
CVE-2024-45570
Memory corruption may occur during IO configuration processing when the IO port count is invalid.
CVE-2024-49841
Memory corruption during memory assignment to headless peripheral VM due to incorrect error code handling.
CVE-2021-1894
Improper access control in TrustZone due to improper error handling while handling the signing key in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
CVE-2023-43542
Memory corruption while copying a keyblobs material when the key materials size is not accurately checked.
CVE-2024-21461
Memory corruption while performing finish HMAC operation when context is freed by keymaster.
CVE-2024-23369
Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.
CVE-2024-23381
Memory corruption when memory mapped in a VBO is not unmapped by the GPU SMMU.
CVE-2024-33067
Information disclosure while invoking callback function of sound model driver from ADSP for every valid opcode received from sound model driver.
CVE-2024-33073
Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
CVE-2024-53023
Memory corruption may occur while accessing a variable during extended back to back tests.
CVE-2023-43531
Memory corruption while verifying the serialized header when the key pairs are generated.
CVE-2024-43060
Memory corruption during voice activation, when sound model parameters are loaded from HLOS to ADSP.
CVE-2024-53022
Memory corruption may occur during communication between primary and guest VM.
CVE-2024-53029
Memory corruption while reading a value from a buffer controlled by the Guest Virtual Machine.
CVE-2024-53031
Memory corruption while reading a type value from a buffer controlled by the Guest Virtual Machine.
CVE-2024-53028
Memory corruption may occur while processing message from frontend during allocation.
CVE-2024-53032
Memory corruption may occur in keyboard virtual device due to guest VM interaction.
CVE-2023-43530
Memory corruption in HLOS while checking for the storage type.
CVE-2023-43538
Memory corruption in TZ Secure OS while Tunnel Invoke Manager initialization.
CVE-2024-21462
Transient DOS while loading the TA ELF file.
CVE-2024-21474
Memory corruption when size of buffer from previous call is used without validation or re-initialization.
CVE-2024-38417
Information disclosure while processing IO control commands.
CVE-2024-38418
Memory corruption while parsing the memory map info in IOCTL calls.
CVE-2024-38420
Memory corruption while configuring a Hypervisor based input virtual device.
CVE-2024-45584
Memory corruption can occur when a compat IOCTL call is followed by a normal IOCTL call from userspace.
CVE-2024-43051
Information disclosure while deriving keys for a session for any Widevine use case.
CVE-2024-43061
Memory corruption during voice activation, when sound model parameters are loaded from HLOS, and the received sound model list is empty in HLOS drive.
CVE-2024-53030
Memory corruption while processing input message passed from FE driver.
CVE-2023-43543
Memory corruption in Audio during a playback or a recording due to race condition between allocation and deallocation of graph object.
CVE-2024-38419
Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node.
CVE-2021-30269
Possible null pointer dereference due to lack of TLB validation for user provided address in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Inf...
CVE-2024-38414
Information disclosure while processing information on firmware image during core initialization.
CVE-2022-40517
Memory corruption in core due to stack-based buffer overflow
CVE-2024-23378
Memory corruption while invoking IOCTL calls for MSM module from the user space during audio playback and record.
CVE-2024-23379
Memory corruption while unmapping the fastrpc map when two threads can free the same map in concurrent scenario.
CVE-2024-43056
Transient DOS during hypervisor virtual I/O operation in a virtual machine.
CVE-2024-33037
Information disclosure as NPU firmware can send invalid IPC message to NPU driver as the driver doesn`t validate the IPC message received from the firmware.
CVE-2024-38408
Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions.
CVE-2024-33053
Memory corruption when multiple threads try to unregister the CVP buffer at the same time.