Memory Corruption when output buffer size is smaller than input buffer size during data copying operation.
Memory Corruption when accessing an output buffer without validating its size during IOCTL processing.
Memory corruption when copying overlapping buffers during memory operations due to incorrect offset calculations.
Memory Corruption when handling power management requests with improperly sized input/output buffers.
Memory Corruption when accessing an output buffer without validating its size during IOCTL processing.
Memory corruption when buffer copy operation fails due to integer overflow during attestation report generation.
Memory corruption can occur during context user dumps due to inadequate checks on buffer length.
Memory Corruption when retrieving output buffer with insufficient size validation.
Memory corruption while processing user buffers.
Memory Corruption when accessing shared buffers without validation of concurrent user-mode input modifications.
Memory Corruption when running a memory copy operation due to invalid writes caused by a null pointer.
Memory corruption while allocating buffers in DSP service.
Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified.
Memory corruption while processing image encoding, when input buffer length is 0 in IOCTL call.
Memory Corruption when sending IOCTL requests with invalid buffer sizes during memcpy operations.
Memory corruption occurs during the copying of read data from the EEPROM because the IO configuration is exposed as shared memory.
Memory corruption when another driver calls an IOCTL with invalid input/output buffer.
Memory corruption while accessing a buffer during IOCTL processing.
Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver.
Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver.
Page 1+ Next →