CVE-2024-23379

Summary

Memory corruption while unmapping the fastrpc map when two threads can free the same map in concurrent scenario.

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.SnapdragonFastConnect 6900affected
Qualcomm, Inc.SnapdragonFastConnect 7800affected
Qualcomm, Inc.SnapdragonQAM8255Paffected
Qualcomm, Inc.SnapdragonQAM8650Paffected
Qualcomm, Inc.SnapdragonQAM8775Paffected
Qualcomm, Inc.SnapdragonQAMSRV1Haffected
Qualcomm, Inc.SnapdragonQAMSRV1Maffected
Qualcomm, Inc.SnapdragonQCA6310affected
Qualcomm, Inc.SnapdragonQCA6320affected
Qualcomm, Inc.SnapdragonQCA6584AUaffected
Qualcomm, Inc.SnapdragonQCA6698AQaffected
Qualcomm, Inc.SnapdragonSA7255Paffected
Qualcomm, Inc.SnapdragonSA7775Paffected
Qualcomm, Inc.SnapdragonSA8255Paffected
Qualcomm, Inc.SnapdragonSA8620Paffected
Qualcomm, Inc.SnapdragonSA8650Paffected
Qualcomm, Inc.SnapdragonSA8770Paffected
Qualcomm, Inc.SnapdragonSA8775Paffected
Qualcomm, Inc.SnapdragonSA9000Paffected
Qualcomm, Inc.SnapdragonSD835affected
Qualcomm, Inc.SnapdragonSnapdragon 8 Gen 1 Mobile Platformaffected
Qualcomm, Inc.SnapdragonSnapdragon 835 Mobile PC Platformaffected
Qualcomm, Inc.SnapdragonSnapdragon Auto 5G Modem-RF Gen 2affected
Qualcomm, Inc.SnapdragonSRV1Haffected
Qualcomm, Inc.SnapdragonSRV1Maffected
Qualcomm, Inc.SnapdragonWCD9335affected
Qualcomm, Inc.SnapdragonWCD9340affected
Qualcomm, Inc.SnapdragonWCD9341affected
Qualcomm, Inc.SnapdragonWCD9380affected
Qualcomm, Inc.SnapdragonWCN3990affected
Qualcomm, Inc.SnapdragonWSA8810affected
Qualcomm, Inc.SnapdragonWSA8815affected
Qualcomm, Inc.SnapdragonWSA8830affected
Qualcomm, Inc.SnapdragonWSA8835affected

Weaknesses

  • CWE-415: CWE-415 Double Free

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References