Qualcomm ≫ Sdx55 Firmware

Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions.

Memory corruption when the user application modifies the same shared memory asynchronously when kernel is accessing it.

Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen at UE.

Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.

Transient DOS while parsing noninheritance IE of Extension element when length of IE is 2 of beacon frame.

Memory corruption while redirecting log file to any file location with any file name.

Memory corruption when user provides data for FM HCI command control operations.

Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location.

Memory corruption when two threads try to map and unmap a single node simultaneously.

Memory corruption while processing concurrent IOCTL calls.