CVE-2024-21478

Published: Jun 3, 2024Modified: Jan 27, 2025

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

transient DOS when setting up a fence callback to free a KGSL memory entry object during DMA.

Affected (12)

Products: Qualcomm: Qam8255p Firmware, Qam8650p Firmware, Qam8775p Firmware, Qamsrv1h Firmware, Qamsrv1m Firmware, Sa8255p Firmware, Sa8650p Firmware, Sa8770p Firmware, Sa8775p Firmware, Sa9000p Firmware, Srv1h Firmware, Srv1m Firmware

12 products

Qam8255p Firmware

Qam8650p Firmware

Qam8775p Firmware

Qamsrv1h Firmware

Qamsrv1m Firmware

Sa8255p Firmware

Sa8650p Firmware

Sa8770p Firmware

Sa8775p Firmware

Sa9000p Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qam8255p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qam8255p	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qam8650p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qam8650p	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qam8775p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qam8775p	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qamsrv1h Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qamsrv1h	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qamsrv1m Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qamsrv1m	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sa8255p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sa8255p	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sa8650p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sa8650p	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sa8770p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sa8770p	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sa8775p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sa8775p	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sa9000p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sa9000p	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Srv1h Firmware	All versions

Running on/with	Platform Versions
Qualcomm Srv1h	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Srv1m Firmware	All versions

Running on/with	Platform Versions
Qualcomm Srv1m	All versions

Related CWEs

NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

Incorrect Type Conversion or Cast

The product does not correctly convert an object, resource, or structure from one type to a different type.

References (2)

https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2024-bulletin.html

Source: product-security@qualcomm.com

PatchVendor Advisory

https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2024-bulletin.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.