Qualcomm ≫ Snapdragon 8 Gen 2 Mobile Firmware

Memory Corruption when copying data from a freed source while executing performance counter deselect operation.

Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified.

Transient DOS when processing a malformed Fast Transition response frame with an invalid header structure during wireless roaming.

Transient DOS when processing target power rate tables during channel configuration.

Memory Corruption while deallocating graphics processing unit memory buffers due to improper handling of memory pointers.

Memory Corruption when initiating GPU memory mapping using scatter-gather lists due to unchecked IOMMU mapping errors.

Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmware.

Transient DOS while handling beacon frames with invalid IE header length.

Memory corruption while processing data packets in diag received from Unix clients.

Memory corruption while processing manipulated payload in video firmware.