CVE-2021-0675

Name of the Vulnerable Software and Affected Versions Android SoC versions (affected versions not specified) MediaTek MT6570 version (version not specified) MediaTek MT6580 version (version not specified) MediaTek MT6735 version (version not specified) MediaTek MT6737 version (version not specified)

Description The issue is related to an incorrect bounds check in the alac decoder, which could lead to a possible out of bounds write. This may result in local escalation of privilege without requiring additional execution privileges. User interaction is not necessary for exploitation. The problem is associated with buffer overflow in memory operations.

Recommendations For Android SoC, apply the patch with ID: ALPS06064258 to resolve the issue. For MediaTek MT6570, MT6580, MT6735, and MT6737, at the moment, there is no information about a newer version that contains a fix for this vulnerability.