Memory Corruption when retrieving output buffer with insufficient size validation.
Memory Corruption when accessing an output buffer without validating its size during IOCTL processing.
Memory Corruption when accessing an output buffer without validating its size during IOCTL processing.
Memory Corruption when processing auxiliary sensor input/output control commands with insufficient buffer size validation.
Memory Corruption when handling power management requests with improperly sized input/output buffers.
Memory Corruption when output buffer size is smaller than input buffer size during data copying operation.
Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver.
Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver.
Memory Corruption when sending IOCTL requests with invalid buffer sizes during memcpy operations.
Memory Corruption when accessing shared buffers without validation of concurrent user-mode input modifications.
Unchecked output buffer may allowed arbitrary code execution in SMM and potentially result in SMM memory corruption.
Memory corruption can occur during context user dumps due to inadequate checks on buffer length.
Memory Corruption when accessing buffers with invalid length during TA invocation.
Memory Corruption when processing display command line information due to improper initialization of a variable.
Memory corruption while using Strongbox due to buffer overflow.
Memory corruption while processing fastboot commands with invalid input.
In BootRom, there's a possible missing payload size check. This could lead to memory buffer overflow without requiring additional execution privileges.
Memory corruption while processing fastboot commands with improperly formatted input.
Memory corruption when buffer copy operation fails due to integer overflow during attestation report generation.
Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified.
Page 1+ Next →