Qualcomm ≫ Wsa8840 Firmware

Memory Corruption while deallocating graphics processing unit memory buffers due to improper handling of memory pointers.

Memory Corruption while processing IOCTL call to update sensor property settings with invalid input parameters.

Transient DOS when processing a received frame with an excessively large authentication information element.

Memory Corruption when user space address is modified and passed to mem_free API, causing kernel memory to be freed inadvertently.

Memory Corruption when multiple threads simultaneously access a memory free API.

Memory corruption occurs when a secure application is launched on a device with insufficient memory.

Memory corruption when copying overlapping buffers during memory operations due to incorrect offset calculations.

Memory corruption while passing pages to DSP with an unaligned starting address.

Memory corruption while preprocessing IOCTLs in sensors.

Information disclosure when a weak hashed value is returned to userland code in response to a IOCTL call to obtain a session ID.