CVE-2016-3820

Name of the Vulnerable Software and Affected Versions Android versions prior to 2016-08-01

Description The issue is related to the ih264d decoder in the mediaserver of Android, which mishandles slice numbers. This allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file.

Recommendations For Android versions prior to 2016-08-01, update the operating system to a version released after 2016-08-01 to resolve the issue. As a temporary workaround, consider avoiding the use of crafted media files that could exploit the vulnerability in the ih264d decoder.