Qualcomm ≫ Sd835 Firmware

Memory corruption in User Identity Module due to integer overflow to buffer overflow when a segement is received via qmi http.

Information disclosure due to buffer over-read in WLAN while parsing NMF frame.

Memory corruption due to access of uninitialized pointer in Bluetooth HOST while processing the AVRCP packet.

Memory corruption in core due to stack-based buffer overflow

Information disclosure due to buffer overread in Core

Information disclosure due to buffer overread in Core

Memory corruption due to stack-based buffer overflow in Core

Information disclosure due to buffer over-read in Bluetooth HOST while processing GetFolderItems and GetItemAttribute Cmds from peer device.

Memory corruption in Audio due to integer overflow to buffer overflow while music playback of clips like amr,evrc,qcelp with modified content.

Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames.