Transient DOS in WLAN Firmware when firmware receives beacon including T2LM IE.

Memory Corruption in Audio while invoking callback function in driver from ADSP.

Transient DOS in WLAN Firmware while parsing t2lm buffers.

Transient DOS in WLAN Firmware while parsing no-inherit IES.

Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute.

Memory corruption in Automotive Audio while copying data from ADSP shared buffer to the VOC packet data buffer.

Memory corruption in core services when Diag handler receives a command to configure event listeners.

Memory corruption while invoking callback function of AFE from ADSP.

Memory corruption in DSP Service during a remote call from HLOS to DSP.

Memory corruption in WLAN Firmware while doing a memory copy of pmk cache.

Transient DOS in WLAN Firmware while parsing rsn ies.

Transient DOS in WLAN Firmware while parsing a NAN management frame.

Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan.

Cryptographic issue in Data Modem due to improper authentication during TLS handshake.

Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload.

Memory corruption due to improper validation of array index in Audio.

Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range.

Transient DOS in Audio while remapping channel buffer in media codec decoding.

Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode.

Transient DOS while parsing WLAN beacon or probe-response frame.