CVE-2022-22087
|
memory corruption in video due to buffer overflow while parsing mkv clip with no codechecker in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published:
June 14, 2022; 6:15:19 AM -0400
|
V3.1: 9.8 CRITICAL
V2.0: 10.0 HIGH
|
CVE-2022-22086
|
Memory corruption in video due to double free while parsing 3gp clip with invalid meta data atoms in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published:
June 14, 2022; 6:15:19 AM -0400
|
V3.1: 9.8 CRITICAL
V2.0: 10.0 HIGH
|
CVE-2022-22085
|
Memory corruption in video due to buffer overflow while reading the dts file in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published:
June 14, 2022; 6:15:19 AM -0400
|
V3.1: 7.8 HIGH
V2.0: 7.2 HIGH
|
CVE-2022-22084
|
Memory corruption when extracting qcp audio file due to lack of check on data length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published:
June 14, 2022; 6:15:19 AM -0400
|
V3.1: 7.8 HIGH
V2.0: 7.2 HIGH
|
CVE-2022-22083
|
Denial of service due to memory corruption while extracting ape header from clips in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published:
June 14, 2022; 6:15:19 AM -0400
|
V3.1: 7.5 HIGH
V2.0: 7.8 HIGH
|
CVE-2022-22082
|
Memory corruption due to possible buffer overflow while parsing DSF header with corrupted channel count in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published:
June 14, 2022; 6:15:19 AM -0400
|
V3.1: 7.8 HIGH
V2.0: 7.2 HIGH
|
CVE-2022-22068
|
kernel event may contain unexpected content which is not generated by NPU software in asynchronous execution mode in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published:
June 14, 2022; 6:15:18 AM -0400
|
V3.1: 7.8 HIGH
V2.0: 7.2 HIGH
|
CVE-2022-22065
|
Out of bound read in WLAN HOST due to improper length check can lead to DOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published:
June 14, 2022; 6:15:18 AM -0400
|
V3.1: 7.5 HIGH
V2.0: 7.8 HIGH
|
CVE-2022-22064
|
Possible buffer over read due to lack of size validation while unpacking frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published:
June 14, 2022; 6:15:18 AM -0400
|
V3.1: 7.5 HIGH
V2.0: 7.8 HIGH
|
CVE-2021-35130
|
Memory corruption in graphics support layer due to use after free condition in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables Published:
June 14, 2022; 6:15:17 AM -0400
|
V3.1: 7.8 HIGH
V2.0: 7.2 HIGH
|
CVE-2021-35112
|
A user with user level permission can access graphics protected region due to improper access control in register configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published:
June 14, 2022; 6:15:17 AM -0400
|
V3.1: 7.8 HIGH
V2.0: 7.2 HIGH
|
CVE-2021-35104
|
Possible buffer overflow due to improper parsing of headers while playing the FLAC audio clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Published:
June 14, 2022; 6:15:17 AM -0400
|
V3.1: 9.8 CRITICAL
V2.0: 10.0 HIGH
|
CVE-2021-35102
|
Possible buffer overflow due to lack of validation for the length of NAI string read from EFS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile Published:
June 14, 2022; 6:15:16 AM -0400
|
V3.1: 7.8 HIGH
V2.0: 7.2 HIGH
|
CVE-2021-35100
|
Possible buffer over read due to improper calculation of string length while parsing Id3 tag in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Published:
June 14, 2022; 6:15:16 AM -0400
|
V3.1: 7.5 HIGH
V2.0: 7.8 HIGH
|
CVE-2021-35081
|
Possible buffer overflow due to improper validation of SSID length received from beacon or probe response during an IBSS session in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music Published:
June 14, 2022; 6:15:16 AM -0400
|
V3.1: 9.8 CRITICAL
V2.0: 10.0 HIGH
|
CVE-2021-35071
|
Possible buffer over read due to lack of size validation while copying data from DBR buffer to RX buffer and can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Published:
June 14, 2022; 6:15:15 AM -0400
|
V3.1: 5.5 MEDIUM
V2.0: 2.1 LOW
|
CVE-2021-30350
|
Lack of MBN header size verification against input buffer can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables Published:
June 14, 2022; 6:15:15 AM -0400
|
V3.1: 7.8 HIGH
V2.0: 7.2 HIGH
|
CVE-2021-30349
|
Improper access control sequence for AC database after memory allocation can lead to possible memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Published:
June 14, 2022; 6:15:15 AM -0400
|
V3.1: 6.7 MEDIUM
V2.0: 7.2 HIGH
|
CVE-2021-30342
|
Improper integrity check can lead to race condition between tasks PDCP and RRC? after a valid RRC Command packet has been received in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables Published:
June 14, 2022; 6:15:14 AM -0400
|
V3.1: 5.9 MEDIUM
V2.0: 7.1 HIGH
|
CVE-2021-30334
|
Possible use after free due to lack of null check of DRM file status after file structure is freed in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables Published:
June 14, 2022; 6:15:14 AM -0400
|
V3.1: 7.8 HIGH
V2.0: 7.2 HIGH
|
) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
