Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response
Memory corruption in Automotive due to Improper Restriction of Operations within the Bounds of a Memory Buffer while exporting a shared key.
Memory corruption due to possible buffer overflow while parsing DSF header with corrupted channel count in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Memory corruption or temporary denial of service due to improper handling of concurrent hypervisor operations to attach or detach IRQs from virtual interrupt sources in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
Memory corruption while processing data sent by FE driver.
Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.
Memory corruption in WLAN Host while setting the PMK length in PMK length in internal cache.
Memory corruption in SPS Application while requesting for public key in sorter TA.
Memory corruption while processing client message during device management.
Memory corruption in core services when Diag handler receives a command to configure event listeners.
Memory corruption occurs when a secure application is launched on a device with insufficient memory.
The cam_get_device_priv function does not check the type of handle being returned (device/session/link). This would lead to invalid type usage if a wrong handle is passed to it.
Memory Corruption in SPS Application while exporting public key in sorter TA.
Memory corruption in TZ Secure OS while loading an app ELF.
Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level.
Memory corruption in MPP performance while accessing DSM watermark using external memory address.
Memory corruption in WIN Product while invoking WinAcpi update driver in the UEFI region.
Memory corruption in WLAN HAL while parsing Rx buffer in processing TLV payload.
Memory corruption while allocating memory in COmxApeDec module in Audio.
Memory corruption in WLAN HAL while passing command parameters through WMI interfaces.
Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application.
QSEE will randomly experience a fatal error during execution due to speculative instruction fetches from device memory. Device memory is not valid executable memory.
Initial xbl_sec revision does not have all the debug policy features and critical checks.
Memory corruption may occur during the synchronization of the camera`s frame processing pipeline.
Memory Corruption in Audio while playing amrwbplus clips with modified content.
Memory Corruption in VR Service while sending data using Fast Message Queue (FMQ).
Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption.
Memory Corruption when processing invalid user address with nonstandard buffer address.
Memory Corruption in Multimedia Framework due to integer overflow when synx bind is called along with synx signal.
Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.
Memory corruption in Audio while validating and mapping metadata.
Memory Corruption in Radio Interface Layer while sending an SMS or writing an SMS to SIM.
Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in TEE.
Memory Corruption while accessing metadata in Display.
Memory corruption in Graphics while importing a file.
Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool.
Memory corruption in WLAN while running doDriverCmd for an unspecific command.
Improper Access to the VM resource manager can lead to Memory Corruption.
Memory corruption in WLAN HOST while receiving an WMI event from firmware.
Memory corruption in Audio during playback session with audio effects enabled.
Memory corruption in Linux while calling system configuration APIs.
Memory Corruption due to improper validation of array index in Linux while updating adn record.
Memory corruption in Linux when the file upload API is called with parameters having large buffer.
An app with non-privileged access can change global system brightness and cause undesired system behavior.
Memory corruption while creating a LPAC client as LPAC engine was allowed to access GPU registers.
Memory corruption during session sign renewal request calls in HLOS.
Memory Corruption when adding user-supplied data without checking available buffer space.
Memory corruption while querying module parameters from Listen Sound model client in kernel from user space.
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.
Memory corruption while verifying the serialized header when the key pairs are generated.