Nixpkgs security tracker

Login with GitHub

⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Suggestion detail

Untriaged

Permalink CVE-2025-47358

7.8 HIGH

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): LOW
Privileges required (PR): LOW
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): HIGH
Availability impact (A): HIGH

created 2 months, 1 week ago

Use After Free in Secure Processor

Memory Corruption when user space address is modified and passed to mem_free API, causing kernel memory to be freed inadvertently.

References

Affected products

Snapdragon

==WCD9385
==X2000094
==FastConnect 6900
==X2000086
==XG101039
==WSA8840
==X2000077
==WCD9378C
==Snapdragon 8cx Gen 3 Compute Platform (SC8280XP-AB, BB)
==X2000092
==WSA8830
==WSA8845
==XG101032
==FastConnect 7800
==WSA8845H
==QCC2072
==WCD9380
==SC8380XP
==XG101002
==WSA8835
==X2000090

Matching in nixpkgs

pkgs.snapdragon-profiler

Profiler for Android devices running Snapdragon chips

nixos-unstable 2021.2
- nixpkgs-unstable 2021.2
- nixos-unstable-small 2021.2
nixos-25.11 2021.2
- nixpkgs-25.11-darwin 2021.2