10 matches found
CVE-2022-40503
Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming.
CVE-2023-33029
Memory corruption in DSP Service during a remote call from HLOS to DSP.
CVE-2022-40532
Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.
CVE-2023-21665
Memory corruption in Graphics while importing a file.
CVE-2023-28537
Memory corruption while allocating memory in COmxApeDec module in Audio.
CVE-2022-33275
Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range.
CVE-2023-21630
Memory Corruption in Multimedia Framework due to integer overflow when synx bind is called along with synx signal.
CVE-2022-40507
Memory corruption due to double free in Core while mapping HLOS address to the list.
CVE-2022-33307
Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is passed.
CVE-2023-33022
Memory corruption in HLOS while invoking IOCTL calls from user-space.