CVE-2022-25716 – Time-of-check Time-of-use Race Condition in Multimedia Framework
https://notcve.org/view.php?id=CVE-2022-25716
Memory corruption in Multimedia Framework due to unsafe access to the data members Corrupción de la memoria en Multimedia Framework debido al acceso inseguro a los miembros de los datos • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVE-2022-25715 – Incorrect type casting in Display driver
https://notcve.org/view.php?id=CVE-2022-25715
Memory corruption in display driver due to incorrect type casting while accessing the fence structure fields Corrupción de la memoria en el controlador de pantalla debido a una conversión de tipo incorrecta al acceder a los campos de la estructura de la cerca • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-704: Incorrect Type Conversion or Cast •
CVE-2022-22088 – Integer Overflow to Buffer Overflow in Bluetooth HOST
https://notcve.org/view.php?id=CVE-2022-22088
Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-787: Out-of-bounds Write •
CVE-2022-22079 – Buffer Over-read in BOOT
https://notcve.org/view.php?id=CVE-2022-22079
Denial of service while processing fastboot flash command on mmc due to buffer over read Denegación de servicio al procesar el comando flash fastboot en mmc debido a sobrelectura del búfer • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-125: Out-of-bounds Read •
CVE-2022-22063 – Memory corruption in Core
https://notcve.org/view.php?id=CVE-2022-22063
Memory corruption in Core due to improper configuration in boot remapper. Corrupción de la memoria en Core debido a una configuración incorrecta en el reasignador de arranque. • https://github.com/msm8916-mainline/CVE-2022-22063 https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin • CWE-787: Out-of-bounds Write •