72 known vulnerabilities · sorted by CVSS score
Memory corruption when the UE receives an RTP packet from the network, during the reassembly of NALUs.
Cryptographic issue occurs due to use of insecure connection method while downloading.
Memory corruption when two threads try to map and unmap a single node simultaneously.
Memory corruption while performing finish HMAC operation when context is freed by keymaster.
Memory corruption when IOMMU unmap of a GPU buffer fails in Linux.
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
Memory corruption in SPS Application while requesting for public key in sorter TA.
Memory corruption while processing finish_sign command to pass a rsp buffer.
Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.
Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.
Memory corruption when allocating and accessing an entry in an SMEM partition continuously.
Memory corruption when there is failed unmap operation in GPU.
Memory corruption while calculating total metadata size when a very high reserved size is requested by gralloc clients.
Information disclosure may occur while decoding the RTP packet with invalid header extension from network.
Information disclosure may occur while processing goodbye RTCP packet from network.
Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet from the network.
Information disclosure may occur during a video call if a device resets due to a non-conforming RTCP packet that doesn`t adhere to RFC standards.
Information disclosure while decoding this RTP packet headers received by UE from the network when the padding bit is set.
Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions.
Information disclosure when an invalid RTCP packet is received during a VoLTE/VoWiFi IMS call.