Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Yocto
(Linuxfoundation)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 73 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-09-04 | CVE-2023-20821 | In nvram, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07937113; Issue ID: ALPS07937113. | Android, Yocto, Openwrt, Rdk\-B | 6.7 | ||
| 2023-09-04 | CVE-2023-20828 | In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08014144; Issue ID: ALPS08014144. | Android, Yocto, Openwrt, Rdk\-B | 6.7 | ||
| 2023-09-04 | CVE-2023-20829 | In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08014144; Issue ID: ALPS08014148. | Android, Yocto, Openwrt, Rdk\-B | 6.7 | ||
| 2023-09-04 | CVE-2023-20830 | In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08014144; Issue ID: ALPS08014156. | Android, Yocto, Openwrt, Rdk\-B | 6.7 | ||
| 2023-09-04 | CVE-2023-20831 | In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08014144; Issue ID: ALPS08014162. | Android, Yocto, Openwrt, Rdk\-B | 6.7 | ||
| 2023-09-04 | CVE-2023-20832 | In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08014144; Issue ID: ALPS08013530. | Android, Yocto, Openwrt, Rdk\-B | 6.7 | ||
| 2023-09-04 | CVE-2023-20838 | In imgsys, there is a possible out of bounds read due to a race condition. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07326455; Issue ID: ALPS07326418. | Android, Linux_kernel, Yocto | 4.0 | ||
| 2023-09-04 | CVE-2023-20835 | In camsys, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07341261; Issue ID: ALPS07326570. | Android, Yocto, Iot_yocto | 6.4 | ||
| 2023-09-04 | CVE-2023-20839 | In imgsys, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07326455; Issue ID: ALPS07326409. | Android, Linux_kernel, Yocto, Iot_yocto | 4.2 | ||
| 2023-09-04 | CVE-2023-20840 | In imgsys, there is a possible out of bounds read and write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07326430; Issue ID: ALPS07326430. | Android, Linux_kernel, Yocto, Iot_yocto | 6.5 |