| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Memory Corruption in Data Modem while processing DMA buffer release event about CFR data. |
| Transient DOS when importing a PKCS#8-encoded RSA private key with a zero-sized modulus. |
| Memory corruption in wearables while processing data from AON. |
| Memory corruption in Audio while processing RT proxy port register driver. |
| Memory corruption in Core Services while executing the command for removing a single event listener. |
| Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element. |
| Transient DOS while processing multiple payload container type with incorrect container length received in DL NAS transport OTA in NR. |
| Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16. |
| Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions. |
| Memory corruption in DSP Service during a remote call from HLOS to DSP. |
| Transient DOS in Modem while allocating DSM items. |
| Memory corruption when the payload received from firmware is not as per the expected protocol size. |
| Memory corruption while processing finish_sign command to pass a rsp buffer. |
| Possible use after free due to improper handling of memory mapping of multiple processes simultaneously. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables |
| Improper handling of address deregistration on failure can lead to new GPU address allocation failure. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables |
| Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables |
| Possible use after free when process shell memory is freed using IOCTL munmap call and process initialization is in progress in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music |
| Memory corruption in Core when updating rollback version for TA and OTA feature is enabled. |
| Memory corruption in TZ Secure OS while requesting a memory allocation from TA region. |
| Memory corruption in HLOS while running playready use-case. |
