CVE-2022-22095: Use After Free
First published: Fri Sep 16 2022(Updated: )
Memory corruption in synx driver due to use-after-free condition in the synx driver due to accessing object handles without acquiring lock in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
Credit: product-security@qualcomm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Qualcomm APQ8053 Firmware | ||
| Qualcomm APQ8053 Firmware | ||
| Qualcomm msm8953 firmware | ||
| Qualcomm msm8953 | ||
| Qualcomm qca6390 firmware | ||
| Qualcomm qca6390 | ||
| qualcomm qca6391 firmware | ||
| qualcomm qca6391 | ||
| qualcomm qca6426 firmware | ||
| qualcomm qca6426 | ||
| qualcomm qca6436 firmware | ||
| qualcomm qca6436 | ||
| Qualcomm qcm2290 firmware | ||
| Qualcomm qcm2290 | ||
| Qualcomm qcm4290 firmware | ||
| Qualcomm qcm4290 | ||
| Qualcomm qcs2290 firmware | ||
| Qualcomm qcs2290 | ||
| Qualcomm qcs4290 firmware | ||
| Qualcomm qcs4290 | ||
| qualcomm qrb5165 firmware | ||
| qualcomm qrb5165 | ||
| qualcomm qrb5165m firmware | ||
| qualcomm qrb5165m | ||
| qualcomm qrb5165n firmware | ||
| qualcomm qrb5165n | ||
| Qualcomm sd439 firmware | ||
| Qualcomm sd439 | ||
| Qualcomm sd460 firmware | ||
| Qualcomm sd460 | ||
| Qualcomm sd662 firmware | ||
| Qualcomm sd662 | ||
| qualcomm sd680 firmware | ||
| qualcomm sd680 | ||
| qualcomm sd690 5g firmware | ||
| qualcomm sd690 5g | ||
| Qualcomm sd750g firmware | ||
| Qualcomm sd750g | ||
| Qualcomm sd765 firmware | ||
| Qualcomm sd765 | ||
| Qualcomm sd765g firmware | ||
| Qualcomm sd765g | ||
| Qualcomm sd768g firmware | ||
| Qualcomm sd768g | ||
| qualcomm sd855 firmware | ||
| qualcomm sd855 | ||
| qualcomm sd865 5g firmware | ||
| qualcomm sd865 5g | ||
| Qualcomm sd870 firmware | ||
| Qualcomm sd870 | ||
| Qualcomm sdx55 firmware | ||
| Qualcomm sdx55 | ||
| Qualcomm sdx55m firmware | ||
| Qualcomm sdx55m | ||
| qualcomm sdxr2 5g firmware | ||
| qualcomm sdxr2 5g | ||
| Qualcomm sm4125 firmware | ||
| Qualcomm sm4125 | ||
| qualcomm sm7250p firmware | ||
| qualcomm sm7250p | ||
| Qualcomm wcd9326 firmware | ||
| Qualcomm wcd9326 | ||
| qualcomm wcd9341 firmware | ||
| qualcomm wcd9341 | ||
| Qualcomm wcd9370 firmware | ||
| Qualcomm wcd9370 | ||
| Qualcomm wcd9375 firmware | ||
| Qualcomm wcd9375 | ||
| qualcomm wcd9380 firmware | ||
| qualcomm wcd9380 | ||
| qualcomm wcd9385 firmware | ||
| qualcomm wcd9385 | ||
| Qualcomm wcn3615 firmware | ||
| Qualcomm wcn3615 | ||
| Qualcomm wcn3680b firmware | ||
| Qualcomm wcn3680b | ||
| Qualcomm wcn3910 firmware | ||
| Qualcomm wcn3910 | ||
| Qualcomm WCN3950 Firmware | ||
| qualcomm wcn3950 | ||
| qualcomm wcn3988 firmware | ||
| Qualcomm WCN3988 | ||
| Qualcomm WCN3991 Firmware | ||
| Qualcomm WCN3991 Firmware | ||
| Qualcomm wcn3998 firmware | ||
| Qualcomm wcn3998 | ||
| Qualcomm WCN6850 Firmware | ||
| Qualcomm WCN6850 Firmware | ||
| Qualcomm WCN6851 Firmware | ||
| Qualcomm WCN6851 Firmware | ||
| qualcomm wsa8810 firmware | ||
| qualcomm wsa8810 | ||
| qualcomm wsa8815 firmware | ||
| qualcomm wsa8815 | ||
| qualcomm wsa8830 firmware | ||
| qualcomm wsa8830 | ||
| qualcomm wsa8835 firmware | ||
| qualcomm wsa8835 | ||
| Android |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://git.codelinaro.org/clo/la/kernel/msm-4.19/-/commit/f7cafe03ab52465acfba2e62c6b4da354723cee3
- https://source.codeaurora.org/quic/le/kernel/msm-4.19/commit/?id=7084d65ae1a81ea81fba243420f7f79dea13d76f
- https://source.android.com/docs/security/bulletin/2022-09-01 (Advisory)
- https://www.qualcomm.com/company/product-security/bulletins/september-2022-bulletin
Frequently Asked Questions
What is the severity of CVE-2022-22095?
CVE-2022-22095 is classified as a high severity vulnerability due to memory corruption issues.
How do I fix CVE-2022-22095?
To fix CVE-2022-22095, update your Qualcomm firmware to the latest version that addresses this vulnerability.
What systems are affected by CVE-2022-22095?
CVE-2022-22095 affects various Qualcomm chipsets in devices utilizing Qualcomm firmware.
What actions can be taken to mitigate CVE-2022-22095?
Mitigations for CVE-2022-22095 include applying patches and updates from your device manufacturer or Qualcomm.
Is CVE-2022-22095 a known exploit?
Yes, CVE-2022-22095 has been acknowledged as a vulnerability that could potentially be exploited in various environments.
- agent/type
- agent/references
- agent/author
- agent/weakness
- agent/remedy
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/source
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/android-source
- source/Android
- agent/software-canonical-lookup
- vendor/qualcomm
- canonical/qualcomm apq8053 firmware
- canonical/qualcomm msm8953 firmware
- canonical/qualcomm msm8953
- canonical/qualcomm qca6390 firmware
- canonical/qualcomm qca6390
- canonical/qualcomm qca6391 firmware
- canonical/qualcomm qca6391
- canonical/qualcomm qca6426 firmware
- canonical/qualcomm qca6426
- canonical/qualcomm qca6436 firmware
- canonical/qualcomm qca6436
- canonical/qualcomm qcm2290 firmware
- canonical/qualcomm qcm2290
- canonical/qualcomm qcm4290 firmware
- canonical/qualcomm qcm4290
- canonical/qualcomm qcs2290 firmware
- canonical/qualcomm qcs2290
- canonical/qualcomm qcs4290 firmware
- canonical/qualcomm qcs4290
- canonical/qualcomm qrb5165 firmware
- canonical/qualcomm qrb5165
- canonical/qualcomm qrb5165m firmware
- canonical/qualcomm qrb5165m
- canonical/qualcomm qrb5165n firmware
- canonical/qualcomm qrb5165n
- canonical/qualcomm sd439 firmware
- canonical/qualcomm sd439
- canonical/qualcomm sd460 firmware
- canonical/qualcomm sd460
- canonical/qualcomm sd662 firmware
- canonical/qualcomm sd662
- canonical/qualcomm sd680 firmware
- canonical/qualcomm sd680
- canonical/qualcomm sd690 5g firmware
- canonical/qualcomm sd690 5g
- canonical/qualcomm sd750g firmware
- canonical/qualcomm sd750g
- canonical/qualcomm sd765 firmware
- canonical/qualcomm sd765
- canonical/qualcomm sd765g firmware
- canonical/qualcomm sd765g
- canonical/qualcomm sd768g firmware
- canonical/qualcomm sd768g
- canonical/qualcomm sd855 firmware
- canonical/qualcomm sd855
- canonical/qualcomm sd865 5g firmware
- canonical/qualcomm sd865 5g
- canonical/qualcomm sd870 firmware
- canonical/qualcomm sd870
- canonical/qualcomm sdx55 firmware
- canonical/qualcomm sdx55
- canonical/qualcomm sdx55m firmware
- canonical/qualcomm sdx55m
- canonical/qualcomm sdxr2 5g firmware
- canonical/qualcomm sdxr2 5g
- canonical/qualcomm sm4125 firmware
- canonical/qualcomm sm4125
- canonical/qualcomm sm7250p firmware
- canonical/qualcomm sm7250p
- canonical/qualcomm wcd9326 firmware
- canonical/qualcomm wcd9326
- canonical/qualcomm wcd9341 firmware
- canonical/qualcomm wcd9341
- canonical/qualcomm wcd9370 firmware
- canonical/qualcomm wcd9370
- canonical/qualcomm wcd9375 firmware
- canonical/qualcomm wcd9375
- canonical/qualcomm wcd9380 firmware
- canonical/qualcomm wcd9380
- canonical/qualcomm wcd9385 firmware
- canonical/qualcomm wcd9385
- canonical/qualcomm wcn3615 firmware
- canonical/qualcomm wcn3615
- canonical/qualcomm wcn3680b firmware
- canonical/qualcomm wcn3680b
- canonical/qualcomm wcn3910 firmware
- canonical/qualcomm wcn3910
- canonical/qualcomm wcn3950 firmware
- canonical/qualcomm wcn3950
- canonical/qualcomm wcn3988 firmware
- canonical/qualcomm wcn3988
- canonical/qualcomm wcn3991 firmware
- canonical/qualcomm wcn3998 firmware
- canonical/qualcomm wcn3998
- canonical/qualcomm wcn6850 firmware
- canonical/qualcomm wcn6851 firmware
- canonical/qualcomm wsa8810 firmware
- canonical/qualcomm wsa8810
- canonical/qualcomm wsa8815 firmware
- canonical/qualcomm wsa8815
- canonical/qualcomm wsa8830 firmware
- canonical/qualcomm wsa8830
- canonical/qualcomm wsa8835 firmware
- canonical/qualcomm wsa8835
- vendor/google
- canonical/android