64 known vulnerabilities · sorted by CVSS score
Memory corruption when the UE receives an RTP packet from the network, during the reassembly of NALUs.
Memory Corruption in Multi-mode Call Processor while processing bit mask API.
Memory corruption in HLOS while running playready use-case.
Memory corruption can occur when arbitrary user-space app gains kernel level privilege to modify DDR memory by corrupting the GPU page table.
Memory corruption when allocating and accessing an entry in an SMEM partition continuously.
Memory corruption in Audio during playback with speaker protection.
Memory corruption while performing finish HMAC operation when context is freed by keymaster.
Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.
Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.
Memory corruption when processing cmd parameters while parsing vdev.
Information disclosure may occur while decoding the RTP packet with invalid header extension from network.
Information disclosure may occur while processing goodbye RTCP packet from network.
Memory Corruption in Data Modem while making a MO call or MT VOLTE call.
Information disclosure while decoding RTP packet received by UE from the network, when payload length mentioned is greater than the available buffer length.
Information disclosure when an invalid RTCP packet is received during a VoLTE/VoWiFi IMS call.
Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value.
Information Disclosure in data Modem while parsing an FMTP line in an SDP message.
Information disclosure while decoding this RTP packet headers received by UE from the network when the padding bit is set.
Memory corruption while loading an ELF segment in TEE Kernel.
Memory corruption in WLAN while sending transmit command from HLOS to UTF handlers.