22 known vulnerabilities · sorted by CVSS score
Memory corruption while invoking remote procedure IOCTL calls.
Memory corruption while processing IOCTL call to get the mapping.
Memory Corruption when processing invalid user address with nonstandard buffer address.
Memory corruption while processing an escape call.
Memory Corruption when accessing buffers with invalid length during TA invocation.
Memory Corruption when multiple threads simultaneously access a memory free API.
Memory corruption while preprocessing IOCTLs in sensors.
Memory Corruption while processing IOCTL call to update sensor property settings with invalid input parameters.
Memory corruption while processing audio streaming operations.
Memory Corruption when user space address is modified and passed to mem_free API, causing kernel memory to be freed inadvertently.
Memory corruption while processing a video session to set video parameters.
Memory corruption while processing camera platform driver IOCTL calls.
Memory corruption while processing escape commands from userspace.
Memory corruption while accessing a buffer during IOCTL processing.
Memory corruption while handling concurrent memory mapping and unmapping requests from a user-space application.
Memory corruption while processing a malformed license file during reboot.
memory corruption while processing an image encoding completion event.
Memory Corruption when multiple threads concurrently access and modify shared resources.
Cryptographic Issue when a shared VM reference allows HLOS to boot loader and access cert chain.
Transient DOS when processing a received frame with an excessively large authentication information element.