23 known vulnerabilities · sorted by CVSS score
Memory Corruption in Audio while allocating the ion buffer during the music playback.
Memory corruption in Graphics while processing user packets for command submission.
Memory corruption when the captureRead QDCM command is invoked from user-space.
Memory corruption caused by missing locks and checks on the DMA fence and improper synchronization.
Memory corruption during voice activation, when sound model parameters are loaded from HLOS, and the received sound model list is empty in HLOS drive.
Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node.
Memory corruption while processing command in Glink linux.
Memory corruption may occur while validating ports and channels in Audio driver.
Memory corruption in display driver while detaching a device.
Memory corruption may occur during the synchronization of the camera`s frame processing pipeline.
Memory corruption while handling multuple IOCTL calls from userspace for remote invocation.
Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.
Memory corruption when Alternative Frequency offset value is set to 255.
Memory corruption while processing camera use case IOCTL call.
Memory corruption during voice activation, when sound model parameters are loaded from HLOS to ADSP.
Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption.
Transient DOS may occur while processing the country IE.
Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network.
Transient DOS in WLAN Host when an invalid channel (like channel out of range) is received in STA during CSA IE.
Transient DOS in WLAN Host while doing channel switch announcement (CSA), when a mobile station receives invalid channel in CSA IE.