46 matches found
CVE-2024-21468
Memory corruption when there is failed unmap operation in GPU.
CVE-2023-33023
Memory corruption while processing finish_sign command to pass a rsp buffer.
CVE-2024-33060
Memory corruption when two threads try to map and unmap a single node simultaneously.
CVE-2024-49834
Memory corruption while power-up or power-down sequence of the camera sensor.
CVE-2023-28547
Memory corruption in SPS Application while requesting for public key in sorter TA.
CVE-2025-21453
Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur.
CVE-2023-33066
Memory corruption in Audio while processing RT proxy port register driver.
CVE-2024-33052
Memory corruption when user provides data for FM HCI command control operations.
CVE-2024-33048
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.
CVE-2024-49832
Memory corruption in Camera due to unusually high number of nodes passed to AXI port.
CVE-2023-43551
Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command.
CVE-2024-33054
Memory corruption during the handshake between the Primary Virtual Machine and Trusted Virtual Machine.
CVE-2024-45577
Memory corruption while invoking IOCTL calls from userspace to camera kernel driver to dump request information.
CVE-2024-49847
Transient DOS while processing of a registration acceptance OTA due to incorrect ciphering key data IE.
CVE-2024-43064
Uncontrolled resource consumption when a driver, an application or a SMMU client tries to access the global registers through SMMU.
CVE-2024-45564
Memory corruption during concurrent access to server info object due to incorrect reference count update.
CVE-2024-45562
Memory corruption during concurrent access to server info object due to unprotected critical field.
CVE-2024-45576
Memory corruption while prociesing command buffer buffer in OPE module.
CVE-2024-45578
Memory corruption while acquire and update IOCTLs during IFE output resource ID validation.
CVE-2024-49844
Memory corruption while triggering commands in the PlayReady Trusted application.
CVE-2024-45581
Memory corruption while sound model registration for voice activation with audio kernel driver.
CVE-2024-45554
Memory corruption during concurrent SSR execution due to race condition on the global maps list.
CVE-2024-45573
Memory corruption may occour while generating test pattern due to negative indexing of display ID.
CVE-2024-45561
Memory corruption while handling IOCTL call from user-space to set latency level.
CVE-2024-45570
Memory corruption may occur during IO configuration processing when the IO port count is invalid.
CVE-2024-49842
Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions.
CVE-2023-43527
Information disclosure while parsing dts header atom in Video.
CVE-2024-45566
Memory corruption during concurrent buffer access due to modification of the reference count.
CVE-2024-49830
Memory corruption while processing an IOCTL call to set mixer controls.
CVE-2023-43528
Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size.
CVE-2024-33067
Information disclosure while invoking callback function of sound model driver from ADSP for every valid opcode received from sound model driver.
CVE-2024-45575
Memory corruption Camera kernel when large number of devices are attached through userspace.
CVE-2024-49829
Memory corruption can occur during context user dumps due to inadequate checks on buffer length.
CVE-2024-53023
Memory corruption may occur while accessing a variable during extended back to back tests.
CVE-2024-38404
Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in modem.
CVE-2024-38417
Information disclosure while processing IO control commands.
CVE-2024-38418
Memory corruption while parsing the memory map info in IOCTL calls.
CVE-2024-45560
Memory corruption while taking a snapshot with hardware encoder due to unvalidated userspace buffer.
CVE-2024-45563
Memory corruption while handling schedule request in Camera Request Manager(CRM) due to invalid link count in the corresponding session.
CVE-2024-45567
Memory corruption while encoding JPEG format.
CVE-2024-45579
Memory corruption may occur when invoking IOCTL calls from userspace to the camera kernel driver to dump request information, due to a missing memory requirement check.
CVE-2024-45565
Memory corruption when blob structure is modified by user-space after kernel verification.
CVE-2024-45574
Memory corruption during array access in Camera kernel due to invalid index from invalid command data.
CVE-2024-45568
Memory corruption due to improper bounds check while command handling in camera-kernel driver.
CVE-2025-21427
Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet from the network.
CVE-2025-21433
Transient DOS when importing a PKCS#8-encoded RSA private key with a zero-sized modulus.