CVE-2024-23368 – Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Qualcomm IPC
https://notcve.org/view.php?id=CVE-2024-23368
Memory corruption when allocating and accessing an entry in an SMEM partition. Corrupción de la memoria al asignar y acceder a una entrada en una partición SMEM. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVE-2024-21482 – Improper Restriction of Operations within the Bounds of a Memory Buffer in Linux Boot Loader
https://notcve.org/view.php?id=CVE-2024-21482
Memory corruption during the secure boot process, when the `bootm` command is used, it bypasses the authentication of the kernel/rootfs image. Corrupción de la memoria durante el proceso de arranque seguro, cuando se utiliza el comando `bootm`, omite la autenticación de la imagen kernel/rootfs. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2024-21458 – Buffer Over-read in WLAN HOST
https://notcve.org/view.php?id=CVE-2024-21458
Information disclosure while handling SA query action frame. Divulgación de información durante el manejo del frame de acción de consulta SA. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVE-2024-21457 – Buffer Over-read in WLAN Host Communication
https://notcve.org/view.php?id=CVE-2024-21457
INformation disclosure while handling Multi-link IE in beacon frame. Divulgación de información mientras se maneja IE de enlace múltiple en un frame de baliza. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVE-2023-43523 – Reachable Assertion in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-43523
Transient DOS while processing 11AZ RTT management action frame received through OTA. DOS transitorio mientras se procesa el frame de acción de gestión de 11AZ RTT recibida a través de OTA. • https://www.qualcomm.com/company/product-security/bulletins/february-2024-bulletin • CWE-617: Reachable Assertion •