Qualcomm ≫ C-v2x 9150 Firmware

Transient DOS while decoding an ASN.1 OER message containing a SEQUENCE of unknown extensions.

Transient DOS while decoding message of size that exceeds the available system memory.

Transient DOS while decoding the ToBeSignedMessage in Automotive Telematics.

Information disclosure when VI calibration state set by ADSP is greater than MAX_FBSP_STATE in the response payload to AFE calibration command.

Memory corruption in SPS Application while requesting for public key in sorter TA.

Memory corruption while processing finish_sign command to pass a rsp buffer.

Memory corruption in Audio while processing RT proxy port register driver.

Memory corruption in Core Services while executing the command for removing a single event listener.

Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.

Memory corruption in Audio while calling START command on host voice PCM multiple times for the same RX or TX tap points.