CVE-2017-0591

Name of the Vulnerable Software and Affected Versions Android versions 6.0 through 7.1.2

Description The issue is caused by a buffer overflow in the libavc component of the Mediaserver service in the Android operating system. This can be exploited by a remote attacker using a specially crafted file, potentially leading to memory corruption. The attacker could cause a denial of service or possibly execute remote code within the context of the Mediaserver process.

Recommendations For Android versions 6.0 through 7.1.2, update to a version that includes the fix for this issue to prevent potential memory corruption and remote code execution. At the moment, there is no information about a newer version that contains a fix for this vulnerability.