CVE ID | Publié | Description | Score | Gravité |
---|---|---|---|---|
Memory corruption when BTFM client sends new messages over Slimbus to ADSP. | 8.4 |
Haute |
||
Memory corruption when allocating and accessing an entry in an SMEM partition. | 7.8 |
Haute |
||
Memory corruption when the payload received from firmware is not as per the expected protocol size. | 7.8 |
Haute |
||
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. | 7.8 |
Haute |