Google Android vulnerabilities

CVE-2022-32598 [MEDIUM] CWE-787 CVE-2022-32598: In widevine, there is a possible out of bounds write due to an incorrect bounds check. This could le In widevine, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07446228; Issue ID: ALPS07446228.

CVE-2022-32631 [MEDIUM] CWE-787 CVE-2022-32631: In Wi-Fi, there is a possible out of bounds write due to improper input validation. This could lead In Wi-Fi, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07453613; Issue ID: ALPS07453613.

CVE-2022-32594 [MEDIUM] CWE-787 CVE-2022-32594: In widevine, there is a possible out of bounds write due to an incorrect bounds check. This could le In widevine, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07446207; Issue ID: ALPS07446207.

CVE-2022-32596 [MEDIUM] CWE-787 CVE-2022-32596: In widevine, there is a possible out of bounds write due to an incorrect bounds check. This could le In widevine, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07446213; Issue ID: ALPS07446213.

CVE-2022-32630 [MEDIUM] CWE-131 CVE-2022-32630: In throttling, there is a possible out of bounds write due to an incorrect calculation of buffer siz In throttling, there is a possible out of bounds write due to an incorrect calculation of buffer size. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07405966; Issue ID: ALPS07405966.

CVE-2022-32622 [MEDIUM] CWE-787 CVE-2022-32622: In gz, there is a possible memory corruption due to a missing bounds check. This could lead to local In gz, there is a possible memory corruption due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07363786; Issue ID: ALPS07363786.

CVE-2022-32634 [MEDIUM] CWE-787 CVE-2022-32634: In ccci, there is a possible out of bounds write due to improper input validation. This could lead t In ccci, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07138646; Issue ID: ALPS07138646.

CVE-2022-32619 [MEDIUM] CWE-787 CVE-2022-32619: In keyinstall, there is a possible out of bounds write due to an incorrect bounds check. This could In keyinstall, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07439659; Issue ID: ALPS07439659.

CVE-2022-32626 [MEDIUM] CWE-787 CVE-2022-32626: In display, there is a possible out of bounds write due to an incorrect bounds check. This could lea In display, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07326239; Issue ID: ALPS07326239.

CVE-2022-32633 [MEDIUM] CWE-269 CVE-2022-32633: In Wi-Fi, there is a possible memory access violation due to a logic error. This could lead to local In Wi-Fi, there is a possible memory access violation due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07441637; Issue ID: ALPS07441637.

CVE-2022-32621 [MEDIUM] CWE-362 CVE-2022-32621: In isp, there is a possible out of bounds write due to a race condition. This could lead to local es In isp, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07310829; Issue ID: ALPS07310829.

CVE-2022-32624 [MEDIUM] CWE-131 CVE-2022-32624: In throttling, there is a possible out of bounds write due to an incorrect calculation of buffer siz In throttling, there is a possible out of bounds write due to an incorrect calculation of buffer size. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07405923; Issue ID: ALPS07405923.

CVE-2022-32625 [MEDIUM] CWE-787 CVE-2022-32625: In display, there is a possible out of bounds write due to an incorrect bounds check. This could lea In display, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07326216; Issue ID: ALPS07326216.

CVE-2022-32628 [MEDIUM] CWE-787 CVE-2022-32628: In isp, there is a possible out of bounds write due to a missing bounds check. This could lead to lo In isp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07310780; Issue ID: ALPS07310780.

CVE-2022-32620 [MEDIUM] CWE-787 CVE-2022-32620: In mpu, there is a possible memory corruption due to a logic error. This could lead to local escalat In mpu, there is a possible memory corruption due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07541753; Issue ID: ALPS07541753.

CVE-2022-32632 [MEDIUM] CWE-787 CVE-2022-32632: In Wi-Fi, there is a possible out of bounds write due to improper input validation. This could lead In Wi-Fi, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07441630; Issue ID: ALPS07441630.

CVE-2022-32629 [MEDIUM] CWE-787 CVE-2022-32629: In isp, there is a possible out of bounds write due to a missing bounds check. This could lead to lo In isp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07310774; Issue ID: ALPS07310774.

CVE-2022-32597 [MEDIUM] CWE-787 CVE-2022-32597: In widevine, there is a possible out of bounds write due to an incorrect bounds check. This could le In widevine, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07446228; Issue ID: ALPS07446228.

CVE-2022-25681 [HIGH] CVE-2022-25681: Closed-source component Android Security Bulletin 2022-12-01 CVE: CVE-2022-25681 Severity: HIGH Component: Closed-source component References: A-238106628 *

CVE-2022-33235 [HIGH] CVE-2022-33235: Closed-source component Android Security Bulletin 2022-12-01 CVE: CVE-2022-33235 Severity: HIGH Component: Closed-source component References: A-245402984 *