CVE-2023-28575 Information

Description

The cam_get_device_priv function does not check the type of handle being returned (device/session/link). This would lead to invalid type usage if a wrong handle is passed to it.

Reference

https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin