Memory corruption while accessing a buffer during IOCTL processing.
Memory corruption while processing IOCTL calls.
Memory corruption while processing an IOCTL request, when buffer significantly exceeds the command argument limit.
Memory corruption while processing IOCTL calls to unmap the buffers.
Memory Corruption when accessing an output buffer without validating its size during IOCTL processing.
Memory Corruption when accessing a buffer after it has been freed while processing IOCTL calls.
Memory corruption while processing frame command IOCTL calls.
Memory corruption while processing IOCTL call to get the mapping.
Memory corruption when another driver calls an IOCTL with invalid input/output buffer.
Memory corruption while processing IOCTL command to handle buffers associated with a session.
Memory corruption while processing image encoding, when input buffer length is 0 in IOCTL call.
Memory corruption while processing an IOCTL command with an arbitrary address.
Memory corruption while IOCTL call is invoked from user-space to read board data.
Memory Corruption when concurrent access to shared buffer occurs during IOCTL calls.
Memory Corruption while invoking IOCTL calls when concurrent access to shared buffer occurs.
Memory Corruption when accessing an output buffer without validating its size during IOCTL processing.
Memory corruption when IOCTL interface is called to map and unmap buffers simultaneously.
memory corruption while processing IOCTL commands, when the buffer in write loopback mode is accessed after being freed.
Memory corruption while invoking remote procedure IOCTL calls.
Memory corruption while registering a buffer from user-space to kernel-space using IOCTL calls.
Page 1+ Next →