CVE-2022-33266 – Integer overflow to buffer overflow in Audio
https://notcve.org/view.php?id=CVE-2022-33266
Memory corruption in Audio due to integer overflow to buffer overflow while music playback of clips like amr,evrc,qcelp with modified content. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-190: Integer Overflow or Wraparound •
CVE-2022-33253 – Buffer over-read in WLAN
https://notcve.org/view.php?id=CVE-2022-33253
Transient DOS due to buffer over-read in WLAN while parsing corrupted NAN frames. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-125: Out-of-bounds Read •
CVE-2022-33252 – Buffer over-read in WLAN
https://notcve.org/view.php?id=CVE-2022-33252
Information disclosure due to buffer over-read in WLAN while handling IBSS beacons frame. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-125: Out-of-bounds Read •
CVE-2022-25746 – Buffer Copy Without Checking Size of Input in Kernel
https://notcve.org/view.php?id=CVE-2022-25746
Memory corruption in kernel due to missing checks when updating the access rights of a memextent mapping. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVE-2022-25725 – Use-after-Free in MODEM
https://notcve.org/view.php?id=CVE-2022-25725
Denial of service in MODEM due to improper pointer handling • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-763: Release of Invalid Pointer or Reference •