Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Multiple Dmabuf Kernel Address UAF Vulnerability
Vulnerability Description
In the function call related to CAM_REQ_MGR_RELEASE_BUF there is no check if the buffer is being used. So when a function called cam_mem_get_cpu_buf to get the kernel va to use, another thread can call CAM_REQ_MGR_RELEASE_BUF to unmap the kernel va which cause UAF of the kernel address.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
释放后使用
Vulnerability Title
Qualcomm Chipsets 资源管理错误漏洞
Vulnerability Description
Qualcomm Chipsets是美国高通(Qualcomm)公司的一系列芯片组。 Qualcomm 芯片存在安全漏洞,该漏洞源于在与 CAM_REQ_MGR_RELEASE_BUF 相关的函数调用中,不检查缓冲区是否正在使用。
CVSS Information
N/A
Vulnerability Type
N/A