A possible use-after-free occurrence in audio driver can happen when pointers are not properly handled in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
Memory corruption in SPS Application while requesting for public key in sorter TA.
Memory corruption in WIN Product while invoking WinAcpi update driver in the UEFI region.
Memory corruption in multimedia due to improper check on received export descriptors in Snapdragon Auto
Memory corruption due to possible buffer overflow while parsing DSF header with corrupted channel count in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Memory corruption in multimedia driver due to untrusted pointer dereference while reading data from socket in Snapdragon Auto
Memory corruption can occur when arbitrary user-space app gains kernel level privilege to modify DDR memory by corrupting the GPU page table.
Memory corruption while processing IOCTL call to set metainfo.
Memory corruption when allocating and accessing an entry in an SMEM partition continuously.
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
Memory corruption when the captureRead QDCM command is invoked from user-space.
Memory corruption in audio module due to integer overflow in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Mobile, Snapdragon Wearables
Memory corruption while allocating memory in HGSL driver.
Memory Corruption in Core due to secure memory access by user while loading modem image.
Memory Corruption in Core while invoking a call to Access Control core library with hardware protected address range.
Memory corruption while taking snapshot when an offset variable is set by camera driver.
Memory corruption due to out of bound read while parsing a video file in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
Memory Corruption in HLOS while registering for key provisioning notify.
Memory Corruption in Audio while allocating the ion buffer during the music playback.
Memory Corruption in Audio while playing amrwbplus clips with modified content.
Memory corruption in Graphics while importing a file.
Memory corruption in Automotive GPU while querying a gsl memory node.
Memory corruption while calculating total metadata size when a very high reserved size is requested by gralloc clients.
Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.
Memory corruption in HAB Memory management due to broad system privileges via physical address.
Memory Corruption in Multimedia Framework due to integer overflow when synx bind is called along with synx signal.
Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool.
Memory corruption while Configuring the SMR/S2CR register in Bypass mode.
Initial xbl_sec revision does not have all the debug policy features and critical checks.
Memory corruption due to stack-based buffer overflow in Core
Memory corruption in Automotive Android OS due to improper validation of array index.
Memory corruption due to double free in Core while mapping HLOS address to the list.
Memory corruption as GPU registers beyond the last protected range can be accessed through LPAC submissions.
Memory corruption in core due to stack-based buffer overflow
Memory corruption due to improper validation of array index in Audio.
Memory corruption while creating a LPAC client as LPAC engine was allowed to access GPU registers.
Memory corruption due to buffer copy without checking the size of input while loading firmware in Linux Kernel.
Memory corruption in Linux Networking due to double free while handling a hyp-assign.
Memory corruption while performing finish HMAC operation when context is freed by keymaster.
Memory corruption while allocating memory for graphics.
Memory corruption when size of buffer from previous call is used without validation or re-initialization.
Memory corruption due to buffer copy without checking size of input in modem while receiving WMI_REQUEST_STATS_CMDID command.
Memory corruption in android core due to improper validation of array index while returning feature ids after license authentication.
Memory corruption due to improper access control in Qualcomm IPC.
Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is passed.
Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command.
Memory corruption in Automotive Multimedia due to integer overflow to buffer overflow during IOCTL calls in video playback.
Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range.
QSEE will randomly experience a fatal error during execution due to speculative instruction fetches from device memory. Device memory is not valid executable memory.
Memory corruption when preparing a shared memory notification for a memparcel in Resource Manager.