Qualcomm ≫ Snapdragon 835 Mobile Pc Firmware

Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet from the network.

Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur.

Memory corruption during concurrent access to server info object due to unprotected critical field.

While processing the authentication message in UE, improper authentication may lead to information disclosure.

Information disclosure while invoking callback function of sound model driver from ADSP for every valid opcode received from sound model driver.

Memory corruption when user provides data for FM HCI command control operations.

Memory corruption when two threads try to map and unmap a single node simultaneously.

Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.

Memory corruption when Alternative Frequency offset value is set to 255.

Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size.