Qualcomm ≫ Mdm9205 Firmware

Information disclosure in Network Services due to buffer over-read while the device receives DNS response.

Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key.

Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in TEE.

Transient DOS in Modem due to NULL pointer dereference while receiving response of lwm2m registration/update/bootstrap request message.

Information disclosure in Modem due to buffer over-read while parsing the wms message received given the buffer and its length.

Memory corruption due to double free in core while initializing the encryption key.

Information disclosure due to buffer over-read in modem while reading configuration parameters.

Memory corruption due to buffer copy without checking the size of input in modem while decoding raw SMS received.

Information disclosure due to buffer over-read while parsing DNS response packets in Modem.

Transient DOS in Modem due to null pointer dereference while processing the incoming packet with http chunked encoding.