CVE ID | Published | Description | Score | Severity |
---|---|---|---|---|
Memory corruption during GNSS HAL process initialization. | 7.8 |
High |
||
Information disclosure while sending implicit broadcast containing APP launch information. | 6.1 |
Medium |
||
Memory corruption while processing user packets to generate page faults. | 8.4 |
High |
||
Transient DOS while parsing noninheritance IE of Extension element when length of IE is 2 of beacon frame. | 7.5 |
High |
||
Memory corruption when a compat IOCTL call is followed by another IOCTL call from userspace to a driver. | 7.8 |
High |
||
Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon. | 7.5 |
High |
||
Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero. | 7.5 |
High |
||
Transient DOS while parsing fragments of MBSSID IE from beacon frame. | 7.5 |
High |
||
Memory corruption when the mapped pages in VBO are still mapped after reclaiming by shrinker. | 8.4 |
High |
||
Memory corruption while processing graphics kernel driver request to create DMA fence. | 8.4 |
High |
||
Memory corruption during session sign renewal request calls in HLOS. | 7.8 |
High |
||
Memory corruption when keymaster operation imports a shared key. | 7.8 |
High |
||
Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI. | 7.5 |
High |