CVE-2024-38415

Memory corruption while handling session errors from firmware.

CVE-2024-38422

Memory corruption while processing voice packet with arbitrary data received from ADSP.

CVE-2024-38423

Memory corruption while processing GPU page table switch.

CVE-2024-38405

Transient DOS while processing the CU information from RNR IE.

CVE-2024-38410

Memory corruption while IOCLT is called when device is in invalid state and the WMI command buffer may be freed twice.

CVE-2024-38406

Memory corruption while handling IOCTL calls in JPEG Encoder driver.

CVE-2024-38419

Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node.

CVE-2024-23385

Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen at UE.

CVE-2024-38407

Memory corruption while processing input parameters for any IOCTL call in the JPEG Encoder driver.

CVE-2024-38408

Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions.

CVE-2024-38424

Memory corruption during GNSS HAL process initialization.

CVE-2024-38409

Memory corruption while station LL statistic handling.

CVE-2024-33032

Memory corruption when the user application modifies the same shared memory asynchronously when kernel is accessing it.