Qualcomm ≫ Msm8909w Firmware

Memory Corruption in Modem due to double free while parsing the PKCS15 sim files.

Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network.

Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.

Transient DOS due to improper authorization in Modem

Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message.

Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool.

Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.

Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length.

Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming.

Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card.