8.2
CVE-2024-45552 - Buffer Over-read in Data Network Stack & Connectivity
Information disclosure may occur during a video call if a device resets due to a non-conforming RTCP packet that doesn`t adhere to RFC standards.
6.2
CVE-2024-45551 - Weak Authentication in HLOS
Cryptographic issue occurs during PIN/password verification using Gatekeeper, where RPMB writes can be dropped on verification failure, potentially leading to a user throttling bypass.
7.7
CVE-2024-45549 - Exposure of Sensitive System Information to an Unauthorized Control Sphere in KERNEL
Information disclosure while creating MQ channels.
6.6
CVE-2024-45544 - Use After Free in Data Network Stack & Connectivity
Memory corruption while processing IOCTL calls to add route entry in the HW.
6.6
CVE-2024-45543 - Out-of-bounds Write in Audio
Memory corruption while accessing MSM channel map and mixer functions.
6.6
CVE-2024-45540 - Use After Free in HLOS
Memory corruption while invoking IOCTL map buffer request from userspace.
7.8
CVE-2024-43067 - Time-of-check Time-of-use (TOCTOU) Race Condition in Camera
Memory corruption occurs during the copying of read data from the EEPROM because the IO configuration is exposed as shared memory.
7.8
CVE-2024-43066 - Use After Free in HLOS
Memory corruption while handling file descriptor during listener registration/de-registration.
7.1
CVE-2024-43065 - Exposed Dangerous Method or Function in HLOS
Cryptographic issues while generating an asymmetric key pair for RKP use cases.
7.8
CVE-2024-43058 - Incorrect Type Conversion or Cast in Multimedia Frameworks
Memory corruption while processing IOCTL calls.