CVE-2023-28546 – Buffer Copy Without Checking Size of Input in SPS Applications
https://notcve.org/view.php?id=CVE-2023-28546
Memory Corruption in SPS Application while exporting public key in sorter TA. Corrupción de la memoria en la aplicación SPS al exportar la clave pública en el clasificador TA. • https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVE-2023-22668 – Use After Free in Audio
https://notcve.org/view.php?id=CVE-2023-22668
Memory Corruption in Audio while invoking IOCTLs calls from the user-space. Corrupción de la memoria en el audio al invocar llamadas IOCTL desde el espacio de usuario. • https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin • CWE-416: Use After Free •
CVE-2023-33074 – Use After Free in Audio
https://notcve.org/view.php?id=CVE-2023-33074
Memory corruption in Audio when SSR event is triggered after music playback is stopped. Corrupción de la memoria en Audio cuando se activa el evento SSR después de detener la reproducción de música. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-416: Use After Free CWE-787: Out-of-bounds Write •
CVE-2023-33061 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-33061
Transient DOS in WLAN Firmware while parsing WLAN beacon or probe-response frame. DOS transitorio en WLAN Firmware mientras se analiza la baliza WLAN o el frame de respuesta de sonda. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVE-2023-33059 – Buffer Copy Without Checking Size of Input in Audio
https://notcve.org/view.php?id=CVE-2023-33059
Memory corruption in Audio while processing the VOC packet data from ADSP. Corrupción de la memoria en Audio mientras se procesan los datos del paquete VOC desde ADSP. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-191: Integer Underflow (Wrap or Wraparound) CWE-787: Out-of-bounds Write •