CVE-2024-21468

Memory corruption when there is failed unmap operation in GPU.

CVE-2024-21475

Memory corruption when the payload received from firmware is not as per the expected protocol size.

CVE-2024-33060

Memory corruption when two threads try to map and unmap a single node simultaneously.

CVE-2024-33042

Memory corruption when Alternative Frequency offset value is set to 255.

CVE-2023-33023

Memory corruption while processing finish_sign command to pass a rsp buffer.

CVE-2024-33052

Memory corruption when user provides data for FM HCI command control operations.

CVE-2023-28547

Memory corruption in SPS Application while requesting for public key in sorter TA.

CVE-2023-33066

Memory corruption in Audio while processing RT proxy port register driver.

CVE-2023-28578

Memory corruption in Core Services while executing the command for removing a single event listener.

CVE-2023-43548

Memory corruption while parsing qcp clip with invalid chunk data size.

CVE-2024-21476

Memory corruption when the channel ID passed by user is not validated and further used.

CVE-2024-33051

Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.