snapdragon_660_mobile_platform_firmware

Memory corruption when the UE receives an RTP packet from the network, during the reassembly of NALUs.

Memory corruption in HLOS while running playready use-case.

Memory corruption when processing cmd parameters while parsing vdev.

Memory corruption can occur when arbitrary user-space app gains kernel level privilege to modify DDR memory by corrupting the GPU page table.

Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.

Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.

Memory corruption when allocating and accessing an entry in an SMEM partition continuously.

Memory corruption in Audio during playback with speaker protection.

Memory corruption while running VK synchronization with KASAN enabled.

Memory corruption while performing finish HMAC operation when context is freed by keymaster.

Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.

Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.

Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time.

Information disclosure when UE receives the RTP packet from the network, while decoding and reassembling the fragments from RTP packet.

Information disclosure may occur while processing goodbye RTCP packet from network.

Information Disclosure in data Modem while parsing an FMTP line in an SDP message.

Information disclosure while decoding this RTP packet headers received by UE from the network when the padding bit is set.

Information disclosure may occur during a video call if a device resets due to a non-conforming RTCP packet that doesn`t adhere to RFC standards.

Information disclosure when an invalid RTCP packet is received during a VoLTE/VoWiFi IMS call.