Nixpkgs security tracker

Login with GitHub

⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Suggestion detail

Untriaged

Permalink CVE-2025-47390

7.8 HIGH

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): LOW
Privileges required (PR): LOW
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): HIGH
Availability impact (A): HIGH

created 1 week, 3 days ago

Buffer Over-read in Camera

Memory corruption while preprocessing IOCTL request in JPEG driver.

References

https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2026-b…

Affected products

Snapdragon

==WSA8840
==FastConnect 7800
==QCM6490
==XG101032
==Cologne
==Qualcomm Video Collaboration VC3 Platform
==FastConnect 6700
==WSA8845H
==WSA8830
==WSA8835
==X2000086
==WSA8845
==WCD9370
==X2000077
==X2000092
==SC8380XP
==FastConnect 6900
==XG101002
==Snapdragon 8cx Gen 3 Compute Platform
==WCD9378C
==Snapdragon 7c+ Gen 3 Compute
==WCD9385
==WCD9375
==WCD9380
==X2000090
==X2000094
==QCA0000
==XG101039
==QCM5430

Matching in nixpkgs

pkgs.snapdragon-profiler

An profiler for Android devices running Snapdragon chips

nixos-unstable 2021.2
- nixpkgs-unstable 2021.2
- nixos-unstable-small 2021.2
nixos-25.11 2021.2
- nixos-25.11-small 2021.2
- nixpkgs-25.11-darwin 2021.2