Anestis Bechtsoudis

**Name of the Vulnerable Software and Affected Versions** Android 6.x before 2016-03-01 **Description** The issue allows attackers to obtain sensitive information and bypass an unspecified protection mechanism via crafted Bitstream data. This can be achieved by exploiting errors in security settings, potentially granting access to confidential information or allowing the bypassing of protection mechanisms. **Recommendations** For Android 6.x before 2016-03-01, update the system to a version released after 2016-03-01 to resolve the issue. As a temporary workaround, consider restricting the use of libstagefright until a patch is available. Avoid using crafted Bitstream data in the affected system until the issue is resolved.