7.5
CVE-2024-21477 - Buffer Over-read in WLAN Firmware
Transient DOS while parsing a protected 802.11az Fine Time Measurement (FTM) frame.
7.8
CVE-2024-21476 - Improper Input Validation in Secure Processor
Memory corruption when the channel ID passed by user is not validated and further used.
7.8
CVE-2024-21475 - Use of Out-of-range Pointer Offset in Video
Memory corruption when the payload received from firmware is not as per the expected protocol size.
8.4
CVE-2024-21474 - Stack-based Buffer Overflow in PMIC
Memory corruption when size of buffer from previous call is used without validation or re-initialization.
8.4
CVE-2024-21471 - Use After Free in Graphics Linux
Memory corruption when IOMMU unmap of a GPU buffer fails in Linux.
8.4
CVE-2023-43531 - Access of Uninitialized Pointer in SPS Applications
Memory corruption while verifying the serialized header when the key pairs are generated.
5.9
CVE-2023-43530 - Integer Overflow or Wraparound in HLOS
Memory corruption in HLOS while checking for the storage type.
7.5
CVE-2023-43529 - Reachable Assertion in Data Modem
Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment packet is received.
6.1
CVE-2023-43528 - Buffer Over-read in Audio
Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size.
6.8
CVE-2023-43527 - Buffer Over-read in Video
Information disclosure while parsing dts header atom in Video.