Qualcomm ≫ Sm8350-ac Firmware

Information disclosure due to buffer over-read in Trusted Execution Environment while QRKS report generation.

Transient DOS due to reachable assertion in Modem during OSI decode scheduling.

Memory corruption in Graphics while importing a file.

Transient DOS due to NULL pointer dereference in Modem while sending invalid messages in DCCH.

Memory corruption in Automotive due to Improper Restriction of Operations within the Bounds of a Memory Buffer while exporting a shared key.

Memory Corruption in Multimedia Framework due to integer overflow when synx bind is called along with synx signal.

Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.

Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming.

Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length.

Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card.