CVE-2022-33255 – Buffer over-read in Bluetooth HOST
https://notcve.org/view.php?id=CVE-2022-33255
Information disclosure due to buffer over-read in Bluetooth HOST while processing GetFolderItems and GetItemAttribute Cmds from peer device. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-125: Out-of-bounds Read •
CVE-2022-33253 – Buffer over-read in WLAN
https://notcve.org/view.php?id=CVE-2022-33253
Transient DOS due to buffer over-read in WLAN while parsing corrupted NAN frames. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-125: Out-of-bounds Read •
CVE-2022-33252 – Buffer over-read in WLAN
https://notcve.org/view.php?id=CVE-2022-33252
Information disclosure due to buffer over-read in WLAN while handling IBSS beacons frame. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-125: Out-of-bounds Read •
CVE-2022-25746 – Buffer Copy Without Checking Size of Input in Kernel
https://notcve.org/view.php?id=CVE-2022-25746
Memory corruption in kernel due to missing checks when updating the access rights of a memextent mapping. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVE-2022-22088 – Integer Overflow to Buffer Overflow in Bluetooth HOST
https://notcve.org/view.php?id=CVE-2022-22088
Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-787: Out-of-bounds Write •