5 matches found
CVE-2021-22684
CVE-2021-22684 affects Samsung Tizen RT RTOS 3.0.GBB. It is caused by integer wrap-around in memory allocation helpers calloc and mm_zalloc, leading to improper memory assignment and potential arbitrary memory allocation or a crash. Connected sources confirm the vulnerability and CVE assignment; ...
CVE-2022-40280
Summary: Samsung TizenRT up to 3.0_GBM and 3.1_PRE contains a denial-of-service issue in the provisioning code. Affected component: provisioningdatabasemanager.c, function createDB . Root cause: after sqlite3_open_v2, there is a missing sqlite3_close, which leads to resource handling issues that ...
CVE-2022-40281
CVE-2022-40281 affects Samsung TizenRT versions up to 3.0_GBM and 3.1_PRE. The issue is in cyassl_connect_step2 (curl/vtls/cyassl.c) where an X509_free call after SSL_get_peer_certificate is missing, causing information disclosure. Connected sources (e.g., PT-2022-25320) describe the vulnerable r...
CVE-2022-40279
CVE-2022-40279 affects Samsung TizenRT up to 3.0_GBM and 3.1_PRE. The issue is in wpa_supplicant/src/l2_packet/l2_packet_pcap.c where l2_packet_receive_timeout fails to check the return value of pcap_dispatch, enabling a denial of service (malfunction). Connected documents provide concrete detail...
CVE-2022-40278
CVE-2022-40278 (Samsung TizenRT) affects TizenRT up to 3.0_GBM and 3.1_PRE. The vulnerability is in security/provisioning/src/provisioningdatabasemanager.c: createDB, where a missing sqlite3_free after sqlite3_exec can lead to a denial of service. Affected software is the TizenRT provisioning dat...