CVE-2024-38422 – Integer Overflow to Buffer Overflow in Audio
https://notcve.org/view.php?id=CVE-2024-38422
Memory corruption while processing voice packet with arbitrary data received from ADSP. • https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2024-bulletin.html • CWE-680: Integer Overflow to Buffer Overflow •
CVE-2024-48289
https://notcve.org/view.php?id=CVE-2024-48289
An issue in the Bluetooth Low Energy implementation of Cypress Bluetooth SDK v3.66 allows attackers to cause a Denial of Service (DoS) via supplying a crafted LL_PAUSE_ENC_REQ packet. • https://community.infineon.com/t5/PSoC-4/BLE-SDK-Integer-Overflow/m-p/888037#M49108 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVE-2024-50610
https://notcve.org/view.php?id=CVE-2024-50610
GSL (GNU Scientific Library) through 2.8 has an integer signedness error in gsl_siman_solve_many in siman/siman.c. • https://git.savannah.gnu.org/cgit/gsl.git/log/siman/siman.c https://github.com/silviadefra/GolDRuSh/blob/main/vulnerabilities/gsl.md https://www.gnu.org/software/gsl/doc/html/siman.html • CWE-190: Integer Overflow or Wraparound •
CVE-2024-47028
https://notcve.org/view.php?id=CVE-2024-47028
In ffu_flash_pack of ffu.c, there is a possible out of bounds read due to an integer overflow. • https://source.android.com/security/bulletin/pixel/2024-10-01 • CWE-125: Out-of-bounds Read •
CVE-2024-47024
https://notcve.org/view.php?id=CVE-2024-47024
In vring_size of external/headers/include/virtio/virtio_ring.h, there is a possible out of bounds write due to an integer overflow. • https://source.android.com/security/bulletin/pixel/2024-10-01 • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •