| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Memory corruption while handling buffer mapping operations in the cryptographic driver. |
| Information disclosure when a weak hashed value is returned to userland code in response to a IOCTL call to obtain a session ID. |
| Memory Corruption in Multi-mode Call Processor while processing bit mask API. |
| Memory corruption in Audio while processing the VOC packet data from ADSP. |
| Memory corruption in Automotive Audio while copying data from ADSP shared buffer to the VOC packet data buffer. |
| Transient DOS while parsing the EPTM test control message to get the test pattern. |
| Information disclosure while registering commands from clients with diag through diagHal. |
| Possible use after free due to improper handling of memory mapping of multiple processes simultaneously. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables |
| Improper handling of address deregistration on failure can lead to new GPU address allocation failure. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables |
| Transient DOS while connecting STA to AP and initiating ADD TS request from AP to establish TSpec session. |
| Memory corruption while processing video packets received from video firmware. |
| Memory corruption may occur while processing voice call registration with user. |
| Memory corruption in Boot while running a ListVars test in UEFI Menu during boot. |
| Transient DOS in Audio when invoking callback function of ASM driver. |
| Memory corruption in Audio while processing IIR config data from AFE calibration block. |
| Memory corruption in Audio while calling START command on host voice PCM multiple times for the same RX or TX tap points. |
| Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. |
| Memory corruption while using the UIM diag command to get the operators name. |
| Memory corruption in Audio while processing the calibration data returned from ACDB loader. |
| Memory corruption while invoking IOCTLs calls in Automotive Multimedia. |
