Memory corruption in TZ Secure OS while loading an app ELF.

Memory Corruption in Core due to secure memory access by user while loading modem image.

Memory Corruption in Multi-mode Call Processor while processing bit mask API.

Memory corruption in WLAN Firmware while doing a memory copy of pmk cache.

Transient DOS in WLAN Firmware while parsing rsn ies.

Transient DOS in WLAN Firmware while parsing a NAN management frame.

Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan.

Memory corruption in WLAN Host when the firmware invokes multiple WMI Service Available command.

Memory Corruption in HLOS while registering for key provisioning notify.

Information Disclosure in data Modem while parsing an FMTP line in an SDP message.

Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value.

Transient DOS in Modem while allocating DSM items.

Memory Corruption in Data Modem while making a MO call or MT VOLTE call.

Weak configuration in Automotive while VM is processing a listener request from TEE.

Improper Access to the VM resource manager can lead to Memory Corruption.

Memory corruption in Graphics while processing user packets for command submission.

Transient DOS in WLAN Host when an invalid channel (like channel out of range) is received in STA during CSA IE.

Transient DOS in WLAN Host while doing channel switch announcement (CSA), when a mobile station receives invalid channel in CSA IE.

Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame.

Transient DOS in WLAN Host when a mobile station receives invalid channel in CSA IE while doing channel switch announcement (CSA).