CVSS: 6.7EPSS: 0%CPEs: 26EXPL: 0CVE-2024-23374 – Stack-based Buffer Overflow in Power Management IC
https://notcve.org/view.php?id=CVE-2024-23374
07 Oct 2024 — Memory corruption is possible when an attempt is made from userspace or console to write some haptics effects pattern to the haptics debugfs file. • https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2024-bulletin.html • CWE-121: Stack-based Buffer Overflow •
CVSS: 6.7EPSS: 0%CPEs: 11EXPL: 0CVE-2024-23370 – Use After Free in Automotive Multimedia
https://notcve.org/view.php?id=CVE-2024-23370
07 Oct 2024 — Memory corruption when a process invokes IOCTL calls from user-space to create a HAB virtual channel and another process invokes IOCTL calls to destroy the same. • https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2024-bulletin.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 42EXPL: 0CVE-2024-38401 – Use After Free in Qualcomm IPC
https://notcve.org/view.php?id=CVE-2024-38401
02 Sep 2024 — Memory corruption while processing concurrent IOCTL calls. e.g. qrtr_bpf_filter_attach and qrtr_bpf_filter_detach. In the case of qrtr_bpf_filter_detach, the global pointer bpf_filter is fetched and freed while only holding a socket lock (and an irrelevant rcu_read_lock) - this may lead directly to double frees or use-after-free (kernel memory corruption) if a malicious user is able to call the QRTR_DETTACH_BPF ioctl on multiple AF_QIPCRTR sockets at once. Based on Android SELinux files, it appears this may... • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-416: Use After Free •
CVSS: 8.4EPSS: 0%CPEs: 69EXPL: 0CVE-2024-23383 – Use After Free in Graphics Linux
https://notcve.org/view.php?id=CVE-2024-23383
05 Aug 2024 — Memory corruption when kernel driver attempts to trigger hardware fences. • https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html • CWE-416: Use After Free •
CVSS: 8.4EPSS: 0%CPEs: 70EXPL: 0CVE-2024-23381 – Use After Free in Graphics Linux
https://notcve.org/view.php?id=CVE-2024-23381
05 Aug 2024 — Memory corruption when memory mapped in a VBO is not unmapped by the GPU SMMU. • https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html • CWE-416: Use After Free •
CVSS: 8.4EPSS: 0%CPEs: 212EXPL: 0CVE-2024-23380 – Use After Free in Graphics
https://notcve.org/view.php?id=CVE-2024-23380
01 Jul 2024 — Memory corruption while handling user packets during VBO bind operation. Corrupción de la memoria al manejar paquetes de usuario durante la operación de enlace VBO. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-416: Use After Free •
CVSS: 8.4EPSS: 0%CPEs: 444EXPL: 0CVE-2024-23373 – Use After Free in Graphics
https://notcve.org/view.php?id=CVE-2024-23373
01 Jul 2024 — Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released. Corrupción de la memoria cuando falla la operación de desasignación de IOMMU, se liberan los búferes DMA y anon. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-416: Use After Free •
CVSS: 8.4EPSS: 0%CPEs: 222EXPL: 0CVE-2024-23372 – Integer Overflow or Wraparound in Graphics
https://notcve.org/view.php?id=CVE-2024-23372
01 Jul 2024 — Memory corruption while invoking IOCTL call for GPU memory allocation and size param is greater than expected size. La memoria se daña al invocar una llamada IOCTL para la asignación de memoria de la GPU y el parámetro de tamaño es mayor que el tamaño esperado. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 686EXPL: 0CVE-2024-23368 – Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Qualcomm IPC
https://notcve.org/view.php?id=CVE-2024-23368
01 Jul 2024 — Memory corruption when allocating and accessing an entry in an SMEM partition. Corrupción de la memoria al asignar y acceder a una entrada en una partición SMEM. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 128EXPL: 0CVE-2024-21466 – Integer Underflow (Wrap or Wraparound) in WLAN Host Communication
https://notcve.org/view.php?id=CVE-2024-21466
01 Jul 2024 — Information disclosure while parsing sub-IE length during new IE generation. Divulgación de información al analizar la longitud sub-IE durante la nueva generación de IE. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-191: Integer Underflow (Wrap or Wraparound) •