Permanent DOS when DL NAS transport receives multiple payloads such that one payload contains SOR container whose integrity check has failed, and the other is LPP where UE needs to send status message to network.

Memory corruption when preparing a shared memory notification for a memparcel in Resource Manager.

Memory corruption when allocating and accessing an entry in an SMEM partition.

Memory corruption when an invoke call and a TEE call are bound for the same trusted application.

Memory corruption while processing key blob passed by the user.

Transient DOS while loading the TA ELF file.

Memory corruption while performing finish HMAC operation when context is freed by keymaster.

Memory corruption while playing audio file having large-sized input buffer.

Memory corruption when the payload received from firmware is not as per the expected protocol size.

Memory corruption while verifying the serialized header when the key pairs are generated.