7.5
CVE-2024-33025 - Buffer Over-read in WLAN Host
Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
7.5
CVE-2024-33024 - Integer Overflow or Wraparound in WLAN Host
Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length.
8.4
CVE-2024-33023 - Use After Free in Graphics Linux
Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.
8.4
CVE-2024-33022 - Integer Overflow or Wraparound in Automotive GPU
Memory corruption while allocating memory in HGSL driver.
8.4
CVE-2024-33021 - Use of Uninitialized Variable in Automotive GPU
Memory corruption while processing IOCTL call to set metainfo.
7.5
CVE-2024-33020 - Buffer Over-read in WLAN HOST
Transient DOS while processing TID-to-link mapping IE elements.
7.5
CVE-2024-33019 - Buffer Over-read in WLAN Host
Transient DOS while parsing the received TID-to-link mapping action frame.
7.5
CVE-2024-33018 - Buffer Over-read in WLAN Host
Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping action frame.
7.5
CVE-2024-33015 - Buffer Over-read in WLAN Host
Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.
7.5
CVE-2024-33014 - Buffer Over-read in WLAN Host
Transient DOS while parsing ESP IE from beacon/probe response frame.