CVE-2017-13225

Name of the Vulnerable Software and Affected Versions Android kernel

Description The issue is caused by a heap buffer overflow in the libMtkOmxVdec.so component. This could lead to a remote elevation of privilege, enabling code execution as a privileged process with no additional execution privileges needed. User interaction is required for exploitation.

Recommendations For Android kernel, consider restricting access to the libMtkOmxVdec.so component until a patch is available. As a temporary workaround, avoid using the affected component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.