CVE-2020-0191

Name of the Vulnerable Software and Affected Versions Android versions Android-10

Description The issue is related to a logic error in the ih264d update default index list() function of ih264d dpb mgr.c, which can cause an out of bounds read. This could lead to remote information disclosure without requiring additional execution privileges. User interaction is necessary for exploitation.

Recommendations For Android version Android-10, update to a version that includes the fix for the logic error in ih264d update default index list() function. As a temporary workaround, consider restricting user interaction with potentially vulnerable components until a patch is available.