CVE-2015-9164

Name of the Vulnerable Software and Affected Versions Android versions prior to 2018-04-05 security patch level

Description A buffer overread issue in Playready may occur due to the lack of input validation of the buffer size provided by HLOS, potentially affecting devices with Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 808, SD 810, SD 820, and SD 820A.

Recommendations For Android versions prior to 2018-04-05 security patch level, update to a version with a security patch level of 2018-04-05 or later to resolve the issue. As a temporary workaround, consider restricting access to the Playready component to minimize the risk of exploitation.