Codeaurora Android-Msm vulnerabilities
11 known vulnerabilities affecting codeaurora/android-msm.
Total CVEs
11
CISA KEV
1
actively exploited
Public exploits
2
Exploited in wild
2
Severity breakdown
HIGH5MEDIUM5LOW1
Vulnerabilities
Page 1 of 1
CVE-2013-2597P2HIGHCVSS 8.4KEVPoCv2.6.29v3.2.54+139 more2014-08-31
CVE-2013-2597 [HIGH] CWE-119 CVE-2013-2597: Stack-based buffer overflow in the acdb_ioctl function in audio_acdb.c in the acdb audio driver for
Stack-based buffer overflow in the acdb_ioctl function in audio_acdb.c in the acdb audio driver for the Linux kernel 2.6.x and 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allows attackers to gain privileges via an application that leverages /dev/msm_acdb access and provides a large size valu
nvd
CVE-2013-2595P2HIGHCVSS 7.2ExploitedPoCv2.6.29v3.2.54+139 more2014-08-31
CVE-2013-2595 [HIGH] CWE-264 CVE-2013-2595: The device-initialization functionality in the MSM camera driver for the Linux kernel 2.6.x and 3.x,
The device-initialization functionality in the MSM camera driver for the Linux kernel 2.6.x and 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, enables MSM_CAM_IOCTL_SET_MEM_MAP_INFO ioctl calls for an unrestricted mmap interface, which allows attackers to gain privileges via a crafted applicat
nvd
CVE-2013-4736P4HIGHCVSS 7.8v3.2.54v3.4.72+27 more2014-02-10
CVE-2013-4736 [HIGH] CWE-189 CVE-2013-4736: Multiple integer overflows in the JPEG engine drivers in the MSM camera driver for the Linux kernel
Multiple integer overflows in the JPEG engine drivers in the MSM camera driver for the Linux kernel 2.6.x and 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allow attackers to cause a denial of service (system crash) via a large number of commands in an ioctl call, related to (1) camera_v1/gemi
nvd
CVE-2014-0972P4HIGHCVSS 7.2v3.2.54v3.4.72+28 more2014-08-01
CVE-2014-0972 [HIGH] CWE-264 CVE-2014-0972: The kgsl graphics driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Andr
The kgsl graphics driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not properly prevent write access to IOMMU context registers, which allows local users to select a custom page table, and consequently write to arbitrary memory locations, by using a crafted GPU c
nvd
CVE-2013-4738P4HIGHCVSS 7.2v2.6.292014-02-03
CVE-2013-4738 [HIGH] CWE-119 CVE-2013-4738: Multiple stack-based buffer overflows in the MSM camera driver for the Linux kernel 3.x, as used in
Multiple stack-based buffer overflows in the MSM camera driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allow attackers to gain privileges via (1) a crafted VIDIOC_MSM_VPE_DEQUEUE_STREAM_BUFF_INFO ioctl call, related to drivers/media/platform/msm/camera_v2/pproc/vpe/m
nvd
CVE-2013-6123P4MEDIUMCVSS 6.9v2.6.292014-01-14
CVE-2013-6123 [MEDIUM] CWE-20 CVE-2013-6123: Multiple array index errors in drivers/media/video/msm/server/msm_cam_server.c in the MSM camera dri
Multiple array index errors in drivers/media/video/msm/server/msm_cam_server.c in the MSM camera driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allow attackers to gain privileges by leveraging camera device-node access, related to the (1) msm_ctrl_cmd_done, (2) msm
nvd
CVE-2013-2599P4MEDIUMCVSS 5.0v3.2.54v3.2.55+138 more2014-08-31
CVE-2013-2599 [MEDIUM] CVE-2013-2599: A certain Qualcomm Innovation Center (QuIC) patch to the NativeDaemonConnector class in services/jav
A certain Qualcomm Innovation Center (QuIC) patch to the NativeDaemonConnector class in services/java/com/android/server/NativeDaemonConnector.java in Code Aurora Forum (CAF) releases of Android 4.1.x through 4.3.x enables debug logging, which allows attackers to obtain sensitive disk-encryption passwords via a logcat call.
nvd
CVE-2013-2598P4MEDIUMCVSS 6.6v2.6.29v3.2.54+139 more2014-08-31
CVE-2013-2598 [MEDIUM] CWE-20 CVE-2013-2598: app/aboot/aboot.c in the Little Kernel (LK) bootloader, as distributed with Qualcomm Innovation Cent
app/aboot/aboot.c in the Little Kernel (LK) bootloader, as distributed with Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allows attackers to overwrite signature-verification code via crafted boot-image load-destination header values that specify memory locations within bootloader memory.
nvd
CVE-2013-6392P4MEDIUMCVSS 4.9v3.2.54v3.4.72+27 more2013-11-30
CVE-2013-6392 [MEDIUM] CWE-399 CVE-2013-6392: The genlock_dev_ioctl function in genlock.c in the Genlock driver for the Linux kernel 3.x, as used
The genlock_dev_ioctl function in genlock.c in the Genlock driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not properly initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via a crafted GENLOCK_
nvd
CVE-2013-4739P4MEDIUMCVSS 4.9v2.6.292014-02-03
CVE-2013-4739 [MEDIUM] CWE-200 CVE-2013-4739: The MSM camera driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android
The MSM camera driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allows attackers to obtain sensitive information from kernel stack memory via (1) a crafted MSM_MCR_IOCTL_EVT_GET ioctl call, related to drivers/media/platform/msm/camera_v1/mercury/msm_mercury_sync.c,
nvd
CVE-2013-6124P4LOWCVSS 3.3v3.2.54v3.2.55+138 more2014-08-31
CVE-2013-6124 [LOW] CWE-59 CVE-2013-6124: The Qualcomm Innovation Center (QuIC) init scripts in Code Aurora Forum (CAF) releases of Android 4.
The Qualcomm Innovation Center (QuIC) init scripts in Code Aurora Forum (CAF) releases of Android 4.1.x through 4.4.x allow local users to modify file metadata via a symlink attack on a file accessed by a (1) chown or (2) chmod command, as demonstrated by changing the permissions of an arbitrary file via an attack on the sensor-settings file.
nvd