Memory corruption while performing finish HMAC operation when context is freed by keymaster.

Memory corruption while copying a keyblob`s material when the key material`s size is not accurately checked.

Memory corruption when the payload received from firmware is not as per the expected protocol size.

Memory corruption when there is failed unmap operation in GPU.

Memory corruption in SPS Application while requesting for public key in sorter TA.

Memory corruption in Audio while processing RT proxy port register driver.

Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header.

Memory corruption in Audio when memory map command is executed consecutively in ADSP.

Memory corruption in Audio during playback with speaker protection.

Memory corruption in TZ Secure OS while requesting a memory allocation from TA region.

Memory corruption in HLOS while running playready use-case.

Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.

Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.

Transient DOS in Automotive OS due to improper authentication to the secure IO calls.

Memory corruption in DSP Services during a remote call from HLOS to DSP.

Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.

Transient DOS in Bluetooth Host while rfc slot allocation.

Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.

Memory corruption while loading an ELF segment in TEE Kernel.

Memory corruption in Audio while processing the VOC packet data from ADSP.