CVE-2024-38406 – Time-of-check Time-of-use (TOCTOU) Race Condition in Camera
https://notcve.org/view.php?id=CVE-2024-38406
Memory corruption while handling IOCTL calls in JPEG Encoder driver. • https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2024-bulletin.html • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVE-2024-38403 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2024-38403
Transient DOS while parsing BTM ML IE when per STA profile is not included. • https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2024-bulletin.html • CWE-126: Buffer Over-read •
CVE-2024-33068 – Use After Free in WLAN Host Communication
https://notcve.org/view.php?id=CVE-2024-33068
Transient DOS while parsing fragments of MBSSID IE from beacon frame. • https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2024-bulletin.html • CWE-416: Use After Free •
CVE-2024-33032 – Improper Validation of Array Index in Camera_Linux
https://notcve.org/view.php?id=CVE-2024-33032
Memory corruption when the user application modifies the same shared memory asynchronously when kernel is accessing it. • https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2024-bulletin.html • CWE-129: Improper Validation of Array Index •
CVE-2024-33031 – Improper Input Validation in RIL
https://notcve.org/view.php?id=CVE-2024-33031
Memory corruption while processing the update SIM PB records request. • https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2024-bulletin.html • CWE-20: Improper Input Validation •