CVE-2015-9157

Name of the Vulnerable Software and Affected Versions Android versions prior to 2018-04-05 security patch level

Description The issue arises in the widevine dash cmd handler() function where response buffers are passed to widevine commands without proper validation. These buffers contain values such as buffer lengths that need to be validated to prevent buffer overflow or over-reads. However, since these buffers are not always in locked memory, a time-of-check, time-of-use issue can occur. This means that even if the value is checked and found valid, a race condition can still occur where the memory is swapped out with a different, possibly out of range, value.

Recommendations For Android versions prior to 2018-04-05 security patch level, update to a version with a security patch level of 2018-04-05 or later to resolve the issue.