CVE-2025-54957

Name of the Vulnerable Software and Affected Versions Dolby UDC versions 4.5 through 4.13

Description An out-of-bounds write issue exists in the Dolby Unified Decoder (UDC) audio decoder library, specifically within the Dolby Digital Plus (DD+) component. The flaw occurs when the decoder processes a malformed DD+ bitstream; specifically, when Evolution data is processed by the evo priv.c file, an integer wraparound during length calculation can result in an undersized buffer allocation. This renders subsequent out-of-bounds checks ineffective, allowing memory corruption. This issue can be triggered without user interaction (zero-click) as audio messages and attachments are decoded locally. In real-world exploitation on Android devices, this was used to achieve initial code execution by manipulating syncframe offsets and overwriting the dap cpdp init() function pointer to bypass Pointer Authentication Codes (PAC-RET) protections.

Recommendations Update Dolby UDC to a version later than 4.13. For Android users, apply the January 2026 security update (or December 2025 for Pixel devices). For Windows users, apply the October PatchTuesday updates. Update ChromeOS to the latest available version.