Description
Memory corruption when multiple threads try to unregister the CVP buffer at the same time.
Reserved 2024-04-23 | Published 2024-12-02 | Updated 2024-12-03 | Assigner
qualcommMEDIUM: 6.7CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Problem types
CWE-416 Use After Free
Product status
Default status
unaffected
C-V2X 9150
affected
FastConnect 6200
affected
FastConnect 6800
affected
FastConnect 6900
affected
QAM8295P
affected
QCA6391
affected
QCA6426
affected
QCA6436
affected
QCA6574AU
affected
QCA6696
affected
QCA8337
affected
QCN9074
affected
QCS410
affected
QCS610
affected
QSM8250
affected
Qualcomm Video Collaboration VC1 Platform
affected
Qualcomm Video Collaboration VC3 Platform
affected
SA6145P
affected
SA6150P
affected
SA6155P
affected
SA8145P
affected
SA8150P
affected
SA8155P
affected
SA8195P
affected
SA8295P
affected
SA8530P
affected
SA8540P
affected
SA9000P
affected
SD865 5G
affected
SDX55
affected
SM7250P
affected
Snapdragon 690 5G Mobile Platform
affected
Snapdragon 750G 5G Mobile Platform
affected
Snapdragon 765 5G Mobile Platform (SM7250-AA)
affected
Snapdragon 765G 5G Mobile Platform (SM7250-AB)
affected
Snapdragon 768G 5G Mobile Platform (SM7250-AC)
affected
Snapdragon 865 5G Mobile Platform
affected
Snapdragon 865+ 5G Mobile Platform (SM8250-AB)
affected
Snapdragon 870 5G Mobile Platform (SM8250-AC)
affected
Snapdragon X55 5G Modem-RF System
affected
Snapdragon XR2 5G Platform
affected
SXR2130
affected
WCD9341
affected
WCD9370
affected
WCD9375
affected
WCD9380
affected
WCD9385
affected
WCN3660B
affected
WCN3680B
affected
WCN3950
affected
WCN3980
affected
WCN3988
affected
WSA8810
affected
WSA8815
affected
WSA8830
affected
WSA8835
affected
References
docs.qualcomm.com/...itybulletin/december-2024-bulletin.html
cve.org (CVE-2024-33053)
nvd.nist.gov (CVE-2024-33053)
Download JSON
Subscribe to our newsletter to learn more about our work.