» 2022 » 9월

CVE-2021-35132

Posted on 2022년 9월 2일2022년 9월 2일 by admin

CVE-2021-35132

Out of bound write in DSP service due to improper bound check for response buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

Source: CVE-2021-35132

CVE-2022-22061

Posted on 2022년 9월 2일2022년 9월 2일 by admin

CVE-2022-22061

Out of bounds writing is possible while verifying device IDs due to improper length check before copying the data in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile

Source: CVE-2022-22061

CVE-2022-22069

Posted on 2022년 9월 2일2022년 9월 2일 by admin

CVE-2022-22069

Devices with keyprotect off may store unencrypted keybox in RPMB and cause cryptographic issue in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

Source: CVE-2022-22069

CVE-2022-22080

Posted on 2022년 9월 2일2022년 9월 2일 by admin

CVE-2022-22080

Improper validation of backend id in PCM routing process can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

Source: CVE-2022-22080

CVE-2021-44718

Posted on 2022년 9월 2일2022년 9월 2일 by admin

CVE-2021-44718

wolfSSL through 5.0.0 allows an attacker to cause a denial of service and infinite loop in the client component by sending crafted traffic from a Machine-in-the-Middle (MITM) position. The root cause is that the client module accepts TLS messages that normally are only sent to TLS servers.

Source: CVE-2021-44718

CVE-2022-22067

Posted on 2022년 9월 2일2022년 9월 2일 by admin

CVE-2022-22067

Potential memory leak in modem during the processing of NSA RRC Reconfiguration with invalid Radio Bearer Config in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile

Source: CVE-2022-22067

CVE-2022-22059

Posted on 2022년 9월 2일2022년 9월 2일 by admin

CVE-2022-22059

Memory corruption due to out of bound read while parsing a video file in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

Source: CVE-2022-22059

CVE-2021-35133

Posted on 2022년 9월 2일2022년 9월 2일 by admin

CVE-2021-35133

Use after free in the synx driver issue while performing other functions during multiple invocation of synx release calls in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

Source: CVE-2021-35133

CVE-2021-35097

Posted on 2022년 9월 2일2022년 9월 2일 by admin

CVE-2021-35097

Possible authentication bypass due to improper order of signature verification and hashing in the signature verification call in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Source: CVE-2021-35097

CVE-2021-35109

Posted on 2022년 9월 2일2022년 9월 2일 by admin

CVE-2021-35109

Possible address manipulation from APP-NS while APP-S is configuring an RG where it tries to merge the address ranges in Snapdragon Connectivity, Snapdragon Mobile

Source: CVE-2021-35109