Joaquín Rinaudo

**Name of the Vulnerable Software and Affected Versions** Android versions prior to 5.1.1 LMY48Z Android versions prior to 6.0 before 2015-12-01 **Description** The issue is related to a lack of protection for service data in the libstagefright library of the Android operating system. It allows a remote attacker to obtain sensitive information and bypass an unspecified protection mechanism. The exploitation can be achieved through unknown vectors, demonstrated by obtaining Signature or SignatureOrSystem access. **Recommendations** For Android versions prior to 5.1.1 LMY48Z, update to version 5.1.1 LMY48Z or later to resolve the issue. For Android versions prior to 6.0 before 2015-12-01, update to version 6.0 or later, released after 2015-12-01, to resolve the issue.