CVE-2017-0592

Name of the Vulnerable Software and Affected Versions Android versions 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2

Description A remote code execution issue in the FLACExtractor.cpp function within the libstagefright component of the Mediaserver in Android could allow an attacker to cause memory corruption by using a specially crafted file. This issue is considered critical due to the potential for remote code execution within the context of the Mediaserver process.

Recommendations For versions 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, update to a version that includes the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.