CVE-2024-20025 | MediaTek MT8798 Da out-of-bounds write (ALPS08541686)

A vulnerability was found in MediaTek MT6739, MT6757, MT6761, MT6763, MT6765, MT6768, MT6771, MT6779, MT6785, MT6833, MT6853, MT6873, MT6877, MT6885, MT6893, MT8167, MT8168, MT8173, MT8175, MT8185, MT8195, MT8321, MT8362A, MT8365, MT8385, MT8395, MT8666, MT8673, MT8678, MT8765, MT8766, MT8768, MT8781, MT8786, MT8788, MT8789, MT8791, MT8791T, MT8796, MT8797 and MT8798. It has been rated as critical. Affected by this issue is some unknown functionality of the component Da. The manipulation leads to out-of-bounds write.

This vulnerability is handled as CVE-2024-20025. Attacking locally is a requirement. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-20025 | MediaTek MT8798 Da out-of-bounds write (ALPS08541686)

Post correlati

CVE-2024-36940 | Linux Kernel up to 6.8.9 pinctrl_enable double free

CVE-2024-25956 | Dell Grab up to 5.0.4 on Windows permission assignment (dsa-2024-121)

CVE-2024-23174 | MediaWiki up to 1.35.13/1.39.5/1.40.1 PageTriage Extension cross site scripting

CVE-2023-50726 | argocd up to 2.8.11/2.9.0/2.9.7/2.10.0/2.10.2 privileges management (GHSA-g623-jcgg-mhmm)