PT-2016-2560 · Google · Android+1
Publicado
2016-08-05
·
Atualizado
2016-11-28
·
CVE-2016-3827
CVSS v2.0
7.1
Alta
| Vetor | AV:N/AC:M/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Android 6.0.1 versions prior to 2016-08-01
Description
The issue is related to the mishandling of decoder errors in the
codecs/hevcdec/SoftHEVC.cpp file within the libstagefright library of the Android media server. This allows remote attackers to cause a denial of service, resulting in a device hang or reboot, by using a crafted media file.Recommendations
For Android 6.0.1 versions prior to 2016-08-01, update the system to a version released after 2016-08-01 to resolve the issue.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Android
Libstagefright