Qualcomm ≫ Qca6564a Firmware

Memory corruption while processing finish_sign command to pass a rsp buffer.

Memory corruption while processing a QMI request for allocating memory from a DHMS supported subsystem.

Memory corruption while invoking HGSL IOCTL context create.

Memory corruption while invoking IOCTLs calls in Automotive Multimedia.

Memory corruption in Audio while processing RT proxy port register driver.

Memory corruption in Core Services while executing the command for removing a single event listener.

Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802.11 beacon frame.

Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.

Memory corruption in Audio while calling START command on host voice PCM multiple times for the same RX or TX tap points.

Memory corruption in Audio while processing IIR config data from AFE calibration block.