Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer.

Memory corruption while reading the FW response from the shared queue.

Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur.

Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions.

Memory corruption during memory assignment to headless peripheral VM due to incorrect error code handling.

Memory corruption while processing an IOCTL call to set mixer controls.

Memory corruption while sound model registration for voice activation with audio kernel driver.

Memory corruption during concurrent access to server info object due to incorrect reference count update.

Memory corruption during concurrent access to server info object due to unprotected critical field.

Memory corruption while calling the NPU driver APIs concurrently.

Transient DOS may occur while processing the country IE.

Memory corruption may occur while validating ports and channels in Audio driver.

Memory corruption during voice activation, when sound model parameters are loaded from HLOS, and the received sound model list is empty in HLOS drive.

Memory corruption during voice activation, when sound model parameters are loaded from HLOS to ADSP.

Memory corruption while processing command in Glink linux.

Transient DOS during hypervisor virtual I/O operation in a virtual machine.

While processing the authentication message in UE, improper authentication may lead to information disclosure.

Information disclosure while parsing the OCI IE with invalid length.

Memory corruption while configuring a Hypervisor based input virtual device.

Information disclosure while processing IO control commands.