CVE-2023-33118 – Use After Free in Automotive Audio
https://notcve.org/view.php?id=CVE-2023-33118
Memory corruption while processing Listen Sound Model client payload buffer when there is a request for Listen Sound session get parameter from ST HAL. Corrupción de la memoria durante el procesamiento de búfer de paylaod del cliente Listen Sound Model cuando hay una solicitud para que la sesión Listen Sound obtenga el parámetro de ST HAL. • https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin • CWE-416: Use After Free •
CVE-2023-33117 – Use After Free in Audio
https://notcve.org/view.php?id=CVE-2023-33117
Memory corruption when HLOS allocates the response payload buffer to copy the data received from ADSP in response to AVCS_LOAD_MODULE command. Corrupción de la memoria cuando HLOS asigna el búfer de payload de respuesta para copiar los datos recibidos de ADSP en respuesta al comando AVCS_LOAD_MODULE. • https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin • CWE-416: Use After Free •
CVE-2023-33116 – Buffer over-read without Checking Size of Input in WLAN Host
https://notcve.org/view.php?id=CVE-2023-33116
Transient DOS while parsing ieee80211_parse_mscs_ie in WIN WLAN driver. DOS transitorio mientras se analiza ieee80211_parse_mscs_ie en el controlador WIN WLAN. • https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVE-2023-33113 – Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Kernel
https://notcve.org/view.php?id=CVE-2023-33113
Memory corruption when resource manager sends the host kernel a reply message with multiple fragments. Corrupción de la memoria cuando el administrador de recursos envía al kernel del host un mensaje de respuesta con múltiples fragmentos. • https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •
CVE-2023-33112 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-33112
Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element. DOS transitorio cuando el firmware WLAN recibe una trama de "reassoc response" que incluye el elemento RIC_DATA. • https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin • CWE-126: Buffer Over-read •