SB2024020610 - Multiple vulnerabilities in MediaTek chipsets
Published: February 6, 2024
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 13 secuirty vulnerabilities.
1) Out-of-bounds write (CVE-ID: CVE-2024-20006)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a missing bounds check within da. A local privileged application can execute arbitrary code.
2) Out-of-bounds write (CVE-ID: CVE-2024-20007)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to a race condition within mp3 decoder. A local application can execute arbitrary code.
3) Improper Check or Handling of Exceptional Conditions (CVE-ID: CVE-2024-20009)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to an incorrect error handling within alac decoder. A local application can execute arbitrary code.
4) Type confusion (CVE-ID: CVE-2024-20010)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to type confusion within keyInstall. A local privileged application can execute arbitrary code.
5) Out-of-bounds write (CVE-ID: CVE-2024-20011)
The vulnerability allows a remote attacker to execute arbitrary code.
The vulnerability exists due to an incorrect bounds check within alac decoder. A remote attacker can trick the victim to open a specially crafted file and execute arbitrary code.
6) Improper input validation (CVE-ID: CVE-2024-20003)
The vulnerability allows a local application to perform service disruption.
The vulnerability exists due to an improper input validation within Modem NL1. A local application can perform service disruption.
7) Type confusion (CVE-ID: CVE-2024-20012)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to type confusion within keyInstall. A local privileged application can execute arbitrary code.
8) Out-of-bounds write (CVE-ID: CVE-2024-20013)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a missing bounds check within keyInstall. A local privileged application can execute arbitrary code.
9) Missing Authorization (CVE-ID: CVE-2024-20015)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to a permissions bypass within telephony. A local application can execute arbitrary code.
10) Out-of-bounds write (CVE-ID: CVE-2024-20016)
The vulnerability allows a local privileged application to perform service disruption.
The vulnerability exists due to an integer overflow within ged. A local privileged application can perform service disruption.
11) Out-of-bounds write (CVE-ID: CVE-2024-20001)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a missing bounds check within TVAPI. A local privileged application can execute arbitrary code.
12) Out-of-bounds write (CVE-ID: CVE-2024-20002)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to a missing bounds check within TVAPI. A local privileged application can execute arbitrary code.
13) Improper input validation (CVE-ID: CVE-2024-20004)
The vulnerability allows a local application to perform service disruption.
The vulnerability exists due to an improper input validation within Modem NL1. A local application can perform service disruption.
Remediation
Install update from vendor's website.