SB2023010601 - Multiple vulnerabilities in Unisoc chipsets
Published: January 6, 2023
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 39 secuirty vulnerabilities.
1) Heap-based Buffer Overflow (CVE-ID: CVE-2022-44428)
The vulnerability allows a local application to read, manipulate or delete data.
The vulnerability exists due to a possible missing bounds check within the wlan driver in WLAN Firmware. A local application can read, manipulate or delete data.
2) Missing Authorization (CVE-ID: CVE-2022-38683)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a missing permission check within the contacts service in Android. A remote attacker can trick the victim to open a specially crafted file and perform a denial of service (DoS) attack.
3) Missing Authorization (CVE-ID: CVE-2022-38682)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a missing permission check within the contacts service in Android. A remote attacker can trick the victim to open a specially crafted file and perform a denial of service (DoS) attack.
4) Missing Authorization (CVE-ID: CVE-2022-38678)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a missing permission check within the contacts service in Android. A remote attacker can trick the victim to open a specially crafted file and perform a denial of service (DoS) attack.
5) Integer Overflow or Wraparound (CVE-ID: CVE-2022-44432)
The vulnerability allows a local application to read, manipulate or delete data.
The vulnerability exists due to a possible missing bounds check within the wlan driver in WLAN Firmware. A local application can read, manipulate or delete data.
6) Out-of-bounds write (CVE-ID: CVE-2022-44431)
The vulnerability allows a local application to read, manipulate or delete data.
The vulnerability exists due to a possible missing bounds check within the wlan driver in WLAN Firmware. A local application can read, manipulate or delete data.
7) Heap-based Buffer Overflow (CVE-ID: CVE-2022-44430)
The vulnerability allows a local application to read, manipulate or delete data.
The vulnerability exists due to a possible missing bounds check within the wlan driver in WLAN Firmware. A local application can read, manipulate or delete data.
8) Heap-based Buffer Overflow (CVE-ID: CVE-2022-44429)
The vulnerability allows a local application to read, manipulate or delete data.
The vulnerability exists due to a possible missing bounds check within the wlan driver in WLAN Firmware. A local application can read, manipulate or delete data.
9) Heap-based Buffer Overflow (CVE-ID: CVE-2022-44427)
The vulnerability allows a local application to read, manipulate or delete data.
The vulnerability exists due to a possible missing bounds check within the wlan driver in WLAN Firmware. A local application can read, manipulate or delete data.
10) Missing Authorization (CVE-ID: CVE-2022-39104)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a missing permission check within the Contacts service in Android. A remote attacker can trick the victim to open a specially crafted file and perform a denial of service (DoS) attack.
11) Integer Overflow or Wraparound (CVE-ID: CVE-2022-44426)
The vulnerability allows a local application to read, manipulate or delete data.
The vulnerability exists due to a possible missing bounds check within the wlan driver in WLAN Firmware. A local application can read, manipulate or delete data.
12) Integer Overflow or Wraparound (CVE-ID: CVE-2022-44425)
The vulnerability allows a local application to read, manipulate or delete data.
The vulnerability exists due to a possible missing bounds check within the wlan driver in WLAN Firmware. A local application can read, manipulate or delete data.
13) Missing Authorization (CVE-ID: CVE-2022-44439)
The vulnerability allows a remote attacker to compromise the affected device.
The vulnerability exists due to a missing permission check within the messaging service in Android. A remote attacker can trick the victim to open a specially crafted file and compromise the affected device.
14) Missing Authorization (CVE-ID: CVE-2022-44438)
The vulnerability allows a remote attacker to compromise the affected device.
The vulnerability exists due to a missing permission check within the messaging service in Android. A remote attacker can trick the victim to open a specially crafted file and compromise the affected device.
15) Missing Authorization (CVE-ID: CVE-2022-44437)
The vulnerability allows a remote attacker to compromise the affected device.
The vulnerability exists due to a missing permission check within the messaging service in Android. A remote attacker can trick the victim to open a specially crafted file and compromise the affected device.
16) Missing Authorization (CVE-ID: CVE-2022-44436)
The vulnerability allows a remote attacker to compromise the affected device.
The vulnerability exists due to a missing permission check within the messaging service in Android. A remote attacker can trick the victim to open a specially crafted file and compromise the affected device.
17) Missing Authorization (CVE-ID: CVE-2022-44435)
The vulnerability allows a remote attacker to compromise the affected device.
The vulnerability exists due to a missing permission check within the messaging service in Android. A remote attacker can trick the victim to open a specially crafted file and compromise the affected device.
18) Missing Authorization (CVE-ID: CVE-2022-44434)
The vulnerability allows a remote attacker to compromise the affected device.
The vulnerability exists due to a missing permission check within the messaging service in Android. A remote attacker can trick the victim to open a specially crafted file and compromise the affected device.
19) Missing Authorization (CVE-ID: CVE-2022-38684)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a missing permission check within the contacts service in Android. A remote attacker can trick the victim to open a specially crafted file and perform a denial of service (DoS) attack.
20) Command injection (CVE-ID: CVE-2022-39081)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a missing permission check within the messaging service in Android. A local privileged application can execute arbitrary code.
21) Buffer over-read (CVE-ID: CVE-2022-44446)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a possible missing bounds check within the wlan driver in WLAN Firmware. A local privileged application can execute arbitrary code.
22) Missing Authorization (CVE-ID: CVE-2022-44423)
The vulnerability allows a local application to perform service disruption.
The vulnerability exists due to a missing permission check within the music service in Android. A local application can perform service disruption.
23) Buffer over-read (CVE-ID: CVE-2022-44445)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a possible missing bounds check within the wlan driver in WLAN Firmware. A local privileged application can execute arbitrary code.
24) Integer underflow (CVE-ID: CVE-2022-44444)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a possible missing bounds check within the wlan driver in WLAN Firmware. A local privileged application can execute arbitrary code.
25) Buffer over-read (CVE-ID: CVE-2022-44443)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a possible missing bounds check within the wlan driver in WLAN Firmware. A local privileged application can execute arbitrary code.
26) Out-of-bounds read (CVE-ID: CVE-2022-44442)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a possible missing bounds check within the wlan driver in WLAN Firmware. A local privileged application can execute arbitrary code.
27) Out-of-bounds read (CVE-ID: CVE-2022-44441)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a possible missing bounds check within the wlan driver in WLAN Firmware. A local privileged application can execute arbitrary code.
28) Out-of-bounds read (CVE-ID: CVE-2022-44440)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a possible missing bounds check within the wlan driver in WLAN Firmware. A local privileged application can execute arbitrary code.
29) Missing Authorization (CVE-ID: CVE-2022-44424)
The vulnerability allows a local application to perform service disruption.
The vulnerability exists due to a missing permission check within the music service in Android. A local application can perform service disruption.
30) Missing Authorization (CVE-ID: CVE-2022-44422)
The vulnerability allows a local application to perform service disruption.
The vulnerability exists due to a missing permission check within the music service in Android. A local application can perform service disruption.
31) Command injection (CVE-ID: CVE-2022-39082)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a missing permission check within the network service in Android. A local privileged application can execute arbitrary code.
32) Command injection (CVE-ID: CVE-2022-39088)
The vulnerability allows a local privileged application to read, manipulate or delete data.
The vulnerability exists due to a missing permission check within the network service in Android. A local privileged application can read, manipulate or delete data.
33) Command injection (CVE-ID: CVE-2022-39087)
The vulnerability allows a local privileged application to read, manipulate or delete data.
The vulnerability exists due to a missing permission check within the network service in Android. A local privileged application can read, manipulate or delete data.
34) Command injection (CVE-ID: CVE-2022-39086)
The vulnerability allows a local privileged application to read, manipulate or delete data.
The vulnerability exists due to a missing permission check within the network service in Android. A local privileged application can read, manipulate or delete data.
35) Command injection (CVE-ID: CVE-2022-39085)
The vulnerability allows a local privileged application to read, manipulate or delete data.
The vulnerability exists due to a missing permission check within the network service in Android. A local privileged application can read, manipulate or delete data.
36) Buffer overflow (CVE-ID: CVE-2022-39118)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a possible out of bounds write due to a missing bounds check within the sprd_sysdump driver in kernel. A local privileged application can execute arbitrary code.
37) Stack-based buffer overflow (CVE-ID: CVE-2022-39116)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a possible out of bounds write due to a missing bounds check within the sysdump driver in kernel. A local privileged application can execute arbitrary code.
38) Command injection (CVE-ID: CVE-2022-39084)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a missing permission check within the network service in Android. A local privileged application can execute arbitrary code.
39) Command injection (CVE-ID: CVE-2022-39083)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a missing permission check within the network service in Android. A local privileged application can execute arbitrary code.
Remediation
Install update from vendor's website.