Qualcomm ≫ Qcn6274 Firmware

Memory Corruption when copying data from a freed source while executing performance counter deselect operation.

Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified.

Transient DOS when processing a malformed Fast Transition response frame with an invalid header structure during wireless roaming.

Transient DOS when processing target power rate tables during channel configuration.

Transient DOS when receiving a service data frame with excessive length during device matching over a neighborhood awareness network protocol connection.

Transient DOS when processing nonstandard FILS Discovery Frames with out-of-range action sizes during initial scans.

Memory corruption when decoding corrupted satellite data files with invalid signature offsets.

Memory corruption when buffer copy operation fails due to integer overflow during attestation report generation.

Memory Corruption while invoking IOCTL calls when concurrent access to shared buffer occurs.

Weak configuration may lead to cryptographic issue when a VoWiFi call is triggered from UE.