CVE-2015-3870

Name of the Vulnerable Software and Affected Versions Android versions prior to 5.1.1 LMY48T

Description The issue is caused by a buffer overflow in the libstagefright component, allowing remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file.

Recommendations For versions prior to 5.1.1 LMY48T, update to version 5.1.1 LMY48T or later to resolve the issue. As a temporary workaround, consider restricting the use of media files from untrusted sources to minimize the risk of exploitation.