CVE: Common Vulnerabilities and Exposures

Required CVE Record Information

Description

decoder/ih264d_api.c in mediaserver in Android 6.x before 2016-07-01 does not initialize certain data structures, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 27907656.

Product Status

Learn more

Information not provided

References 2 Total

https://android.googlesource.com/platform/external/libavc/+/ecf6c7ce6d5a22d52160698aab44fc234c63291a
external site
http://source.android.com/security/bulletin/2016-07-01.html
external site

Updated: 2024-08-06

This container includes required additional information provided by the CVE Program for this vulnerability.

References 2 Total

https://android.googlesource.com/platform/external/libavc/+/ecf6c7ce6d5a22d52160698aab44fc234c63291a
external site
x_transferred
http://source.android.com/security/bulletin/2016-07-01.html
external site
x_transferred

Common vulnerabilities and Exposures (CVE)

Required CVE Record Information

CNA: Android (associated with Google Inc. or Open Handset Alliance)

Description

Product Status

References 2 Total

CVE Program

References 2 Total