Qualcomm ≫ Sm8450 Firmware

Transient DOS due to untrusted Pointer Dereference in core while sending USB QMI request.

Transient DOS due to improper authentication in modem while receiving plain TLB OTA request message from network.

Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is passed.

Transient DOS due to uncontrolled resource consumption in Linux kernel when malformed messages are sent from the Gunyah Resource Manager message queue.

Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message.

Memory corruption due to use after free in Core when multiple DCI clients register and deregister.

Transient DOS due to reachable assertion in Modem because of invalid network configuration.

Memory corruption due to buffer copy without checking the size of input in Core while processing ioctl commands from diag client applications.

Assertion occurs while processing Reconfiguration message due to improper validation

Memory corruption in core due to buffer copy without check9ing the size of input while processing ioctl queries.