CVE-2024-21468

Memory corruption when there is failed unmap operation in GPU.

CVE-2023-33111

Information disclosure when VI calibration state set by ADSP is greater than MAX_FBSP_STATE in the response payload to AFE calibration command.

CVE-2024-21475

Memory corruption when the payload received from firmware is not as per the expected protocol size.

CVE-2023-33023

Memory corruption while processing finish_sign command to pass a rsp buffer.

CVE-2023-28547

Memory corruption in SPS Application while requesting for public key in sorter TA.

CVE-2023-43521

Memory corruption when multiple listeners are being registered with the same file descriptor.

CVE-2023-33066

Memory corruption in Audio while processing RT proxy port register driver.

CVE-2023-43548

Memory corruption while parsing qcp clip with invalid chunk data size.

CVE-2023-43551

Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command.

CVE-2023-43528

Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size.

CVE-2023-43527

Information disclosure while parsing dts header atom in Video.

CVE-2023-43555

Information disclosure in Video while parsing mp2 clip with invalid section length.