CVE-2022-22087
|
memory corruption in video due to buffer overflow while parsing mkv clip with no codechecker in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published:
June 14, 2022; 6:15:19 AM -0400
|
V3.1: 9.8 CRITICAL
V2.0: 10.0 HIGH
|
CVE-2022-22086
|
Memory corruption in video due to double free while parsing 3gp clip with invalid meta data atoms in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published:
June 14, 2022; 6:15:19 AM -0400
|
V3.1: 9.8 CRITICAL
V2.0: 10.0 HIGH
|
CVE-2022-22085
|
Memory corruption in video due to buffer overflow while reading the dts file in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published:
June 14, 2022; 6:15:19 AM -0400
|
V3.1: 7.8 HIGH
V2.0: 7.2 HIGH
|
CVE-2022-22084
|
Memory corruption when extracting qcp audio file due to lack of check on data length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published:
June 14, 2022; 6:15:19 AM -0400
|
V3.1: 7.8 HIGH
V2.0: 7.2 HIGH
|
CVE-2022-22083
|
Denial of service due to memory corruption while extracting ape header from clips in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published:
June 14, 2022; 6:15:19 AM -0400
|
V3.1: 7.5 HIGH
V2.0: 7.8 HIGH
|
CVE-2022-22082
|
Memory corruption due to possible buffer overflow while parsing DSF header with corrupted channel count in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published:
June 14, 2022; 6:15:19 AM -0400
|
V3.1: 7.8 HIGH
V2.0: 7.2 HIGH
|
CVE-2022-22068
|
kernel event may contain unexpected content which is not generated by NPU software in asynchronous execution mode in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published:
June 14, 2022; 6:15:18 AM -0400
|
V3.1: 7.8 HIGH
V2.0: 7.2 HIGH
|
CVE-2022-22065
|
Out of bound read in WLAN HOST due to improper length check can lead to DOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published:
June 14, 2022; 6:15:18 AM -0400
|
V3.1: 7.5 HIGH
V2.0: 7.8 HIGH
|
CVE-2022-22064
|
Possible buffer over read due to lack of size validation while unpacking frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published:
June 14, 2022; 6:15:18 AM -0400
|
V3.1: 7.5 HIGH
V2.0: 7.8 HIGH
|
CVE-2021-35104
|
Possible buffer overflow due to improper parsing of headers while playing the FLAC audio clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Published:
June 14, 2022; 6:15:17 AM -0400
|
V3.1: 9.8 CRITICAL
V2.0: 10.0 HIGH
|
CVE-2021-35102
|
Possible buffer overflow due to lack of validation for the length of NAI string read from EFS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile Published:
June 14, 2022; 6:15:16 AM -0400
|
V3.1: 7.8 HIGH
V2.0: 7.2 HIGH
|
CVE-2021-35081
|
Possible buffer overflow due to improper validation of SSID length received from beacon or probe response during an IBSS session in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music Published:
June 14, 2022; 6:15:16 AM -0400
|
V3.1: 9.8 CRITICAL
V2.0: 10.0 HIGH
|
CVE-2021-30349
|
Improper access control sequence for AC database after memory allocation can lead to possible memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Published:
June 14, 2022; 6:15:15 AM -0400
|
V3.1: 6.7 MEDIUM
V2.0: 7.2 HIGH
|
CVE-2021-30334
|
Possible use after free due to lack of null check of DRM file status after file structure is freed in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables Published:
June 14, 2022; 6:15:14 AM -0400
|
V3.1: 7.8 HIGH
V2.0: 7.2 HIGH
|
CVE-2021-30281
|
Possible unauthorized access to secure space due to improper check of data allowed while flashing the no access control device configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Published:
June 14, 2022; 6:15:14 AM -0400
|
V3.1: 7.8 HIGH
V2.0: 7.2 HIGH
|
CVE-2021-35117
|
An Out of Bounds read may potentially occur while processing an IBSS beacon, in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music Published:
April 01, 2022; 1:15:07 AM -0400
|
V3.1: 9.1 CRITICAL
V2.0: 9.4 HIGH
|
CVE-2021-35105
|
Possible out of bounds access due to improper input validation during graphics profiling in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published:
April 01, 2022; 1:15:07 AM -0400
|
V3.1: 7.8 HIGH
V2.0: 7.2 HIGH
|
CVE-2021-35088
|
Possible out of bound read due to improper validation of IE length during SSID IE parse when channel is DFS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Published:
April 01, 2022; 1:15:07 AM -0400
|
V3.1: 9.1 CRITICAL
V2.0: 6.4 MEDIUM
|
CVE-2021-1942
|
Improper handling of permissions of a shared memory region can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Published:
April 01, 2022; 1:15:06 AM -0400
|
V3.1: 8.8 HIGH
V2.0: 7.2 HIGH
|
CVE-2021-35069
|
Improper validation of data length received from DMA buffer can lead to memory corruption. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Published:
February 11, 2022; 6:15:08 AM -0500
|
V3.1: 7.8 HIGH
V2.0: 7.2 HIGH
|
) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
