CVE-2022-33303: Uncontrolled resource consumption in Linux kernel
First published: Tue Jun 06 2023(Updated: )
Transient DOS due to uncontrolled resource consumption in Linux kernel when malformed messages are sent from the Gunyah Resource Manager message queue.
Credit: product-security@qualcomm.com product-security@qualcomm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Qualcomm WCN685X-5 Firmware | ||
| Qualcomm WCN685X-5 Firmware | ||
| Qualcomm WCN685X-1 | ||
| Qualcomm WCN685X | ||
| Qualcomm WCN785X Firmware | ||
| Qualcomm WCN785X Firmware | ||
| Qualcomm WCN785X Firmware | ||
| qualcomm wcn785x-5 firmware | ||
| Qualcomm QCA6574 Firmware | ||
| Qualcomm QCA6574AU | ||
| Qualcomm QCA6595AU Firmware | ||
| Qualcomm QCA6595AU Firmware | ||
| Qualcomm QCA6696 Firmware | ||
| Qualcomm QCA6696 Firmware | ||
| Qualcomm SA6145P Firmware | ||
| Qualcomm SA6145P Firmware | ||
| Qualcomm SA6150P Firmware | ||
| Qualcomm SA6150P Firmware | ||
| Qualcomm SA6155 | ||
| Qualcomm SA6155P | ||
| Qualcomm SA8145P | ||
| Qualcomm SA8145P Firmware | ||
| Qualcomm SA8150P Firmware | ||
| Qualcomm SA8150P Firmware | ||
| Qualcomm SA8155 | ||
| Qualcomm SA8155P Firmware | ||
| Qualcomm SA8195P | ||
| Qualcomm SA8195P Firmware | ||
| Qualcomm SM8450 | ||
| Qualcomm SM8450 Firmware | ||
| Qualcomm SM8350P firmware | ||
| Qualcomm SM8350-AC | ||
| Qualcomm SM8350-AC | ||
| Qualcomm SM8350 | ||
| Qualcomm WCD9380 | ||
| Qualcomm WCD9380 Firmware | ||
| Qualcomm WCD9385 | ||
| Qualcomm WCD9385 Firmware | ||
| Qualcomm WSA8830 | ||
| Qualcomm WSA8830 | ||
| Qualcomm WSA8835 | ||
| Qualcomm WSA8835 Firmware | ||
| All of | ||
| Qualcomm WCN685X-5 Firmware | ||
| Qualcomm WCN685X-5 Firmware | ||
| All of | ||
| Qualcomm WCN685X-1 | ||
| Qualcomm WCN685X | ||
| All of | ||
| Qualcomm WCN785X Firmware | ||
| Qualcomm WCN785X Firmware | ||
| All of | ||
| Qualcomm WCN785X Firmware | ||
| qualcomm wcn785x-5 firmware | ||
| All of | ||
| Qualcomm QCA6574 Firmware | ||
| Qualcomm QCA6574AU | ||
| All of | ||
| Qualcomm QCA6595AU Firmware | ||
| Qualcomm QCA6595AU Firmware | ||
| All of | ||
| Qualcomm QCA6696 Firmware | ||
| Qualcomm QCA6696 Firmware | ||
| All of | ||
| Qualcomm SA6145P Firmware | ||
| Qualcomm SA6145P Firmware | ||
| All of | ||
| Qualcomm SA6150P Firmware | ||
| Qualcomm SA6150P Firmware | ||
| All of | ||
| Qualcomm SA6155 | ||
| Qualcomm SA6155P | ||
| All of | ||
| Qualcomm SA8145P | ||
| Qualcomm SA8145P Firmware | ||
| All of | ||
| Qualcomm SA8150P Firmware | ||
| Qualcomm SA8150P Firmware | ||
| All of | ||
| Qualcomm SA8155 | ||
| Qualcomm SA8155P Firmware | ||
| All of | ||
| Qualcomm SA8195P | ||
| Qualcomm SA8195P Firmware | ||
| All of | ||
| Qualcomm SM8450 | ||
| Qualcomm SM8450 Firmware | ||
| All of | ||
| Qualcomm SM8350P firmware | ||
| Qualcomm SM8350-AC | ||
| All of | ||
| Qualcomm SM8350-AC | ||
| Qualcomm SM8350 | ||
| All of | ||
| Qualcomm WCD9380 | ||
| Qualcomm WCD9380 Firmware | ||
| All of | ||
| Qualcomm WCD9385 | ||
| Qualcomm WCD9385 Firmware | ||
| All of | ||
| Qualcomm WSA8830 | ||
| Qualcomm WSA8830 | ||
| All of | ||
| Qualcomm WSA8835 | ||
| Qualcomm WSA8835 Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2022-33303?
CVE-2022-33303 is a vulnerability in the Linux kernel that allows for transient denial-of-service attacks due to uncontrolled resource consumption when malformed messages are sent from the Gunyah Resource Manager message queue.
How severe is CVE-2022-33303?
CVE-2022-33303 has a severity level of 5.5, which is considered medium.
Which software is affected by CVE-2022-33303?
Qualcomm Wcn685x-5 Firmware, Qualcomm Wcn685x-1 Firmware, Qualcomm Wcn785x-1 Firmware, Qualcomm Wcn785x-5 Firmware, Google Android, Qualcomm Qca6574au, Qualcomm Qca6595au, Qualcomm Qca6696, Qualcomm Sa6145p, Qualcomm Sa6150p Firmware, Qualcomm Sa6155p, Qualcomm Sa8145p Firmware, Qualcomm Sa8150p, Qualcomm Sa8195p Firmware, Qualcomm Sm8450 Firmware, Qualcomm Sm8350 Firmware, Qualcomm Sm8350-ac Firmware, Qualcomm Wcd9380, Qualcomm Wcd9385, Qualcomm Wsa8830, and Qualcomm Wsa8835 are affected by CVE-2022-33303.
How do I fix CVE-2022-33303?
To fix CVE-2022-33303, it is recommended to apply the necessary updates and patches provided by Qualcomm. Please refer to the official Qualcomm product security bulletin for more information.
What is the Common Weakness Enumeration (CWE) ID of CVE-2022-33303?
The Common Weakness Enumeration (CWE) ID of CVE-2022-33303 is CWE-400.
- agent/type
- agent/severity
- agent/remedy
- agent/references
- agent/title
- agent/weakness
- agent/first-publish-date
- agent/description
- agent/author
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/qualcomm
- canonical/qualcomm wcn685x-5 firmware
- canonical/qualcomm wcn685x-1
- canonical/qualcomm wcn685x
- canonical/qualcomm wcn785x firmware
- canonical/qualcomm wcn785x-5 firmware
- canonical/qualcomm qca6574 firmware
- canonical/qualcomm qca6574au
- canonical/qualcomm qca6595au firmware
- canonical/qualcomm qca6696 firmware
- canonical/qualcomm sa6145p firmware
- canonical/qualcomm sa6150p firmware
- canonical/qualcomm sa6155
- canonical/qualcomm sa6155p
- canonical/qualcomm sa8145p
- canonical/qualcomm sa8145p firmware
- canonical/qualcomm sa8150p firmware
- canonical/qualcomm sa8155
- canonical/qualcomm sa8155p firmware
- canonical/qualcomm sa8195p
- canonical/qualcomm sa8195p firmware
- canonical/qualcomm sm8450
- canonical/qualcomm sm8450 firmware
- canonical/qualcomm sm8350p firmware
- canonical/qualcomm sm8350-ac
- canonical/qualcomm sm8350
- canonical/qualcomm wcd9380
- canonical/qualcomm wcd9380 firmware
- canonical/qualcomm wcd9385
- canonical/qualcomm wcd9385 firmware
- canonical/qualcomm wsa8830
- canonical/qualcomm wsa8835
- canonical/qualcomm wsa8835 firmware