Qualcomm ≫ Sa9000p Firmware

Transient DOS while loading the TA ELF file.

Memory corruption while processing key blob passed by the user.

Information Disclosure while parsing beacon frame in STA.

INformation disclosure while handling Multi-link IE in beacon frame.

Information disclosure while handling SA query action frame.

Memory corruption in Hypervisor when platform information mentioned is not aligned.

transient DOS when setting up a fence callback to free a KGSL memory entry object during DMA.

Memory corruption while copying a keyblob`s material when the key material`s size is not accurately checked.

Memory corruption in Audio during a playback or a recording due to race condition between allocation and deallocation of graph object.

Memory corruption when IPC callback handle is used after it has been released during register callback by another thread.