CVE-2020-0492

Name of the Vulnerable Software and Affected Versions Android versions Android-11

Description In the BitstreamFillCache function of bitstream.cpp, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.

Recommendations For Android version Android-11, consider restricting access to the BitstreamFillCache function in bitstream.cpp to minimize the risk of exploitation until a patch is available. As a temporary workaround, avoid using the BitstreamFillCache function until the issue is resolved.