CVE ID | Publié | Description | Score | Gravité |
---|---|---|---|---|
Memory corruption while maintaining memory maps of HLOS memory. | 7.8 |
Haute |
||
Memory corruption when two threads try to map and unmap a single node simultaneously. | 8.4 |
Haute |
||
Memory corruption when user provides data for FM HCI command control operations. | 7.8 |
Haute |
||
Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command. | 9.1 |
Critique |
||
Memory corruption when more scan frequency list or channels are sent from the user space. | 7.8 |
Haute |
||
Memory corruption when the payload received from firmware is not as per the expected protocol size. | 7.8 |
Haute |
||
Memory corruption when IOMMU unmap of a GPU buffer fails in Linux. | 8.4 |
Haute |
||
Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size. | 6.1 |
Moyen |
||
Information disclosure while parsing dts header atom in Video. | 6.8 |
Moyen |
||
Memory corruption when there is failed unmap operation in GPU. | 8.4 |
Haute |
||
Memory corruption while processing finish_sign command to pass a rsp buffer. | 8.4 |
Haute |
||
Memory corruption in SPS Application while requesting for public key in sorter TA. | 8.4 |
Haute |
||
Memory corruption while parsing qcp clip with invalid chunk data size. | 9.8 |
Critique |
||
Memory corruption in Audio while processing RT proxy port register driver. | 8.4 |
Haute |
||
Memory corruption in Core Services while executing the command for removing a single event listener. | 9.3 |
Critique |