Qualcomm Security Vulnerabilities

CVE-2023-43515

Memory corruption in HLOS while running kernel address sanitizers (syzkaller) on tmecom with DEBUG_FS...

CVE-2024-21457

INformation disclosure while handling Multi-link IE in beacon...

CVE-2024-23380

Memory corruption while handling user packets during VBO bind...

CVE-2024-23368

Memory corruption when allocating and accessing an entry in an SMEM...

CVE-2023-43554

Memory corruption while processing IOCTL handler in...

CVE-2024-21461

Memory corruption while performing finish HMAC operation when context is freed by...

CVE-2024-21469

Memory corruption when an invoke call and a TEE call are bound for the same trusted...

CVE-2024-23373

Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting...

CVE-2023-33078

Information Disclosure while processing IOCTL request in...

CVE-2024-21460

Information disclosure when ASLR relocates the IMEM and Secure DDR portions as one chunk in virtual address...

CVE-2024-21462

Transient DOS while loading the TA ELF...

CVE-2024-21456

Information Disclosure while parsing beacon frame in...

CVE-2024-21458

Information disclosure while handling SA query action...

CVE-2024-21465

Memory corruption while processing key blob passed by the...

CVE-2024-21482

Memory corruption during the secure boot process, when the bootm command is used, it bypasses the authentication of the kernel/rootfs...

CVE-2023-33090

Transient DOS while processing channel information for speaker protection v2 module in...

CVE-2024-21477

Transient DOS while parsing a protected 802.11az Fine Time Measurement (FTM)...

CVE-2023-43555

Information disclosure in Video while parsing mp2 clip with invalid section...

CVE-2023-43528

Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected...

CVE-2023-43538

Memory corruption in TZ Secure OS while Tunnel Invoke Manager...

CVE-2023-43551

Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode...

CVE-2023-43542

Memory corruption while copying a keyblobs material when the key materials size is not accurately...

CVE-2024-21474

Memory corruption when size of buffer from previous call is used without validation or...

CVE-2023-43530

Memory corruption in HLOS while checking for the storage...

CVE-2023-43529

Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment packet is...

CVE-2023-33100

Transient DOS while processing DL NAS Transport message when message ID is not defined in the 3GPP...

CVE-2023-33119

Memory corruption while loading a VM from a signed VM image that is not coherent in the processor...

CVE-2024-21480

Memory corruption while playing audio file having large-sized input...

CVE-2024-21476

Memory corruption when the channel ID passed by user is not validated and further...

CVE-2023-43526

Memory corruption while querying module parameters from Listen Sound model client in kernel from user...

CVE-2023-33099

Transient DOS while processing SMS container of non-standard size received in DL NAS transport in...

CVE-2024-23351

Memory corruption as GPU registers beyond the last protected range can be accessed through LPAC...

CVE-2024-21478

transient DOS when setting up a fence callback to free a KGSL memory entry object during...

CVE-2023-43537

Information disclosure while handling T2LM Action Frame in WLAN...

CVE-2023-43524

Memory corruption when the bandpass filter order received from AHAL is not within the expected...

CVE-2023-43556

Memory corruption in Hypervisor when platform information mentioned is not...

CVE-2024-23363

Transient DOS while processing an improperly formatted Fine Time Measurement (FTM) management...

CVE-2024-23354

Memory corruption when the IOCTL call is interrupted by a...

CVE-2024-21475

Memory corruption when the payload received from firmware is not as per the expected protocol...

CVE-2023-43545

Memory corruption when more scan frequency list or channels are sent from the user...

CVE-2023-43543

Memory corruption in Audio during a playback or a recording due to race condition between allocation and deallocation of graph...

CVE-2023-43525

Memory corruption while copying the sound model data from user to kernel buffer during sound model...

CVE-2024-23360

Memory corruption while creating a LPAC client as LPAC engine was allowed to access GPU...

CVE-2024-21473

Memory corruption while redirecting log file to any file location with any file...

CVE-2023-43544

Memory corruption when IPC callback handle is used after it has been released during register callback by another...

CVE-2013-2596

Integer overflow in the fb_mmap function in drivers/video/fbmem.c in the Linux kernel before 3.8.9, as used in a certain Motorola build of Android 4.1.2 and other products, allows local users to create a read-write memory mapping for the entirety of kernel memory, and consequently gain privileges,....

CVE-2024-21471

Memory corruption when IOMMU unmap of a GPU buffer fails in...

CVE-2023-43531

Memory corruption while verifying the serialized header when the key pairs are...

CVE-2023-43521

Memory corruption when multiple listeners are being registered with the same file...

CVE-2023-43527

Information disclosure while parsing dts header atom in...