Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time.

Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.

Memory corruption while running VK synchronization with KASAN enabled.

Transient DOS in WLAN Firmware while parsing a BTM request.

Transient DOS in Data Modem during DTLS handshake.

Memory corruption while receiving a message in Bus Socket Transport Server.

Cryptographic issue in Automotive while unwrapping the key secs2d and verifying with RPMB data.

Permanent DOS in Hypervisor while untrusted VM without PSCI support makes a PSCI call.

Memory corruption in Audio during playback with speaker protection.

Memory corruption in HLOS while running playready use-case.

Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.

Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.

Transient DOS while parsing WPA IES, when it is passed with length more than expected size.

Transient DOS when processing a NULL buffer while parsing WLAN vdev.

Memory corruption when processing cmd parameters while parsing vdev.

Transient DOS while converting TWT (Target Wake Time) frame parameters in the OTA broadcast.

Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.

Memory corruption in Audio while running invalid audio recording from ADSP.

Memory corruption in DSP Services during a remote call from HLOS to DSP.

Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data.