CVE-2022-25746 – Buffer Copy Without Checking Size of Input in Kernel
https://notcve.org/view.php?id=CVE-2022-25746
Memory corruption in kernel due to missing checks when updating the access rights of a memextent mapping. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVE-2022-25725 – Use-after-Free in MODEM
https://notcve.org/view.php?id=CVE-2022-25725
Denial of service in MODEM due to improper pointer handling • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-763: Release of Invalid Pointer or Reference •
CVE-2022-25721 – Incorrect Type Conversion in Video driver
https://notcve.org/view.php?id=CVE-2022-25721
Memory corruption in video driver due to type confusion error during video playback Corrupción de la memoria en el controlador de video debido a un error de confusión de tipos durante la reproducción de video • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVE-2022-25717 – Use-After-Free Issue in Display
https://notcve.org/view.php?id=CVE-2022-25717
Memory corruption in display due to double free while allocating frame buffer memory Corrupción de la memoria en la pantalla debido a la doble liberación al asignar memoria búfer de fotogramas • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-415: Double Free •
CVE-2022-22088 – Integer Overflow to Buffer Overflow in Bluetooth HOST
https://notcve.org/view.php?id=CVE-2022-22088
Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-787: Out-of-bounds Write •