CVE-2022-33307 – Double free in Automotive
https://notcve.org/view.php?id=CVE-2022-33307
Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is passed. • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-415: Double Free •
CVE-2022-33303 – Uncontrolled resource consumption in Linux kernel
https://notcve.org/view.php?id=CVE-2022-33303
Transient DOS due to uncontrolled resource consumption in Linux kernel when malformed messages are sent from the Gunyah Resource Manager message queue. • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-400: Uncontrolled Resource Consumption •
CVE-2022-33267 – Improper restriction of operations within the bounds of memory buffer in Linux
https://notcve.org/view.php?id=CVE-2022-33267
Memory corruption in Linux while sending DRM request. • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVE-2022-33264 – Stack-based buffer overflow in Modem
https://notcve.org/view.php?id=CVE-2022-33264
Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message. • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVE-2022-33240 – Incorrect type conversion or cast in Audio
https://notcve.org/view.php?id=CVE-2022-33240
Memory corruption in Audio due to incorrect type cast during audio use-cases. • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-704: Incorrect Type Conversion or Cast •