Information disclosure while processing a packet at EAVB BE side with invalid header length.
Information disclosure may occur while decoding the RTP packet with improper header length for number of contributing sources.
Information disclosure while processing message from client with invalid payload.
Information disclosure while parsing the OCI IE with invalid length.
Information disclosure may occur while decoding the RTP packet with invalid header extension from network.
Memory corruption while transmitting packet mapping information with invalid header payload size.
Information disclosure while decoding RTP packet received by UE from the network, when payload length mentioned is greater than the available buffer length.
Transient DOS while processing CCCH data when NW sends data with invalid length.
Memory corruption while processing message content in eAVB.
Transient DOS while handling beacon frames with invalid IE header length.
Information disclosure while decoding this RTP packet headers received by UE from the network when the padding bit is set.
Information Disclosure when processing advertisement frames with malformed MBSSID elements of insufficient length.
Transient DOS when processing a malformed Fast Transition response frame with an invalid header structure during wireless roaming.
Information disclosure while processing system calls with invalid parameters.
Information Disclosure while processing IOCTL handler callbacks without verifying buffer size.
Information disclosure may occur while processing goodbye RTCP packet from network.
Information disclosure when an invalid RTCP packet is received during a VoLTE/VoWiFi IMS call.
Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.
Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet from the network.
information disclosure while invoking the mailbox read API.
Page 1+ Next →