MidnightBSD

Advisories for widevine

CVE-2022-48331

Widevine Trusted Application (TA) 5.0.0 through 5.1.1 has a drm_save_keys feature_name_len integer overflow and resultant buffer overflow.

Products Affected

Vendor Product Version
widevine trusted_application *
CVE-2022-48332

Widevine Trusted Application (TA) 5.0.0 through 5.1.1 has a drm_save_keys file_name_len integer overflow and resultant buffer overflow.

Products Affected

Vendor Product Version
widevine trusted_application *
CVE-2022-48333

Widevine Trusted Application (TA) 5.0.0 through 5.1.1 has a drm_verify_keys prefix_len+feature_name_len integer overflow and resultant buffer overflow.

Products Affected

Vendor Product Version
widevine trusted_application *
CVE-2022-48334

Widevine Trusted Application (TA) 5.0.0 through 5.1.1 has a drm_verify_keys total_len+file_name_len integer overflow and resultant buffer overflow.

Products Affected

Vendor Product Version
widevine trusted_application *
CVE-2022-48335

Widevine Trusted Application (TA) 5.0.0 through 7.1.1 has a PRDiagVerifyProvisioning integer overflow and resultant buffer overflow.

Products Affected

Vendor Product Version
widevine trusted_application *
CVE-2022-48336

Widevine Trusted Application (TA) 5.0.0 through 7.1.1 has a PRDiagParseAndStoreData integer overflow and resultant buffer overflow.

Products Affected

Vendor Product Version
widevine trusted_application *