PT-2016-3520 · Google · Android
Publicado
2016-07-11
·
Atualizado
2016-11-28
·
CVE-2014-9778
CVSS v2.0
9.3
Alta
| Vetor | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Android versions prior to 2016-07-05
Description
The issue is related to the
vid dec set h264 mv buffers function in the Qualcomm components, which does not validate the number of buffers. This allows attackers to gain privileges via a crafted application.Recommendations
For Android versions prior to 2016-07-05, update to a version released after 2016-07-05 to resolve the issue.
Correção
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Android