|
5551
|
7.5
7.8
|
HIGH
Network
|
A vulnerability in the Android media framework (libavc) related to incorrect use of mmco parameters. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-65735716.
|
CWE-20
Improper Input Validation
|
CVE-2017-13186
|
cpe:2.3:o:google:android:8.1:* cpe:2.3:o:google:android:8.0:* cpe:2.3:o:google:android:7.1.2:* cpe:2.3:o:googl…
|
|
|
|
|
2024-11-21 12:11
2018-01-13
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5552
|
9.1
8.5
|
CRITICAL
Network
|
An information disclosure vulnerability in the Android media framework (libhevc). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-65123471.
|
CWE-200
Information Exposure
|
CVE-2017-13185
|
cpe:2.3:o:google:android:8.0:* cpe:2.3:o:google:android:7.1.2:* cpe:2.3:o:google:android:7.1.1:* cpe:2.3:o:goo…
|
|
|
|
|
2024-11-21 12:11
2018-01-13
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5553
|
7.8
7.2
|
HIGH
Local
|
In the enableVSyncInjections function of SurfaceFlinger, there is a possible use after free of mVSyncInjector. This could lead to a local elevation of privilege enabling code execution as a privilege…
|
CWE-416
Use After Free
|
CVE-2017-13184
|
cpe:2.3:o:google:android:8.1:* cpe:2.3:o:google:android:8.0:*
|
|
|
|
|
2024-11-21 12:11
2018-01-13
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5554
|
7.0
6.2
|
HIGH
Local
|
In the OMXNodeInstance::useBuffer and IOMX::freeBuffer functions, there is a possible use after free due to a race condition if the user frees the buffer while it's being used in another thread. This…
|
CWE-362
Race Condition
|
CVE-2017-13183
|
cpe:2.3:o:google:android:8.1:*
|
|
|
|
|
2024-11-21 12:11
2018-01-13
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5555
|
7.8
7.2
|
HIGH
Local
|
In the sendFormatChange function of ACodec, there is a possible integer overflow which could lead to an out-of-bounds write. This could lead to a local elevation of privilege enabling code execution …
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-13182
|
cpe:2.3:o:google:android:8.1:* cpe:2.3:o:google:android:8.0:*
|
|
|
|
|
2024-11-21 12:11
2018-01-13
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5556
|
7.8
7.2
|
HIGH
Local
|
In the doGetThumb and getThumbnail functions of MtpServer, there is a possible double free due to not NULLing out a freed pointer. This could lead to an local elevation of privilege enabling code exe…
|
CWE-415
Double Free
|
CVE-2017-13181
|
cpe:2.3:o:google:android:8.1:* cpe:2.3:o:google:android:8.0:* cpe:2.3:o:google:android:7.1.2:* cpe:2.3:o:googl…
|
|
|
|
|
2024-11-21 12:11
2018-01-13
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5557
|
7.8
7.2
|
HIGH
Local
|
In the onQueueFilled function of SoftAVCDec, there is a possible out-of-bounds write due to a use after free if a bad header causes the decoder to get caught in a loop while another thread frees the …
|
CWE-787 CWE-416
Out-of-bounds Write Use After Free
|
CVE-2017-13180
|
cpe:2.3:o:google:android:8.1:* cpe:2.3:o:google:android:8.0:* cpe:2.3:o:google:android:7.1.2:* cpe:2.3:o:googl…
|
|
|
|
|
2024-11-21 12:11
2018-01-13
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5558
|
9.8
10.0
|
CRITICAL
Network
|
In the ihevcd_allocate_static_bufs and ihevcd_create functions of SoftHEVC, there is a possible out-of-bounds write due to a use after free. Both ps_codec_obj and ps_create_op->s_ivd_create_op_t.pv_h…
|
CWE-787 CWE-416
Out-of-bounds Write Use After Free
|
CVE-2017-13179
|
cpe:2.3:o:google:android:8.1:* cpe:2.3:o:google:android:8.0:* cpe:2.3:o:google:android:7.1.2:* cpe:2.3:o:googl…
|
|
|
|
|
2024-11-21 12:11
2018-01-13
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5559
|
9.8
10.0
|
CRITICAL
Network
|
In the initDecoder function of SoftAVCDec, there is a possible out-of-bounds write to mCodecCtx due to a use after free when buffer allocation fails. This could lead to remote code execution as a pri…
|
CWE-787 CWE-416
Out-of-bounds Write Use After Free
|
CVE-2017-13178
|
cpe:2.3:o:google:android:8.1:* cpe:2.3:o:google:android:8.0:* cpe:2.3:o:google:android:7.1.2:* cpe:2.3:o:googl…
|
|
|
|
|
2024-11-21 12:11
2018-01-13
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5560
|
9.8
10.0
|
CRITICAL
Network
|
In several functions of libhevc, NEON registers are not preserved. This could lead to remote code execution as a privileged process with no additional execution privileges needed. User interaction is…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-13177
|
cpe:2.3:o:google:android:8.1:* cpe:2.3:o:google:android:8.0:* cpe:2.3:o:google:android:7.1.2:* cpe:2.3:o:googl…
|
|
|
|
|
2024-11-21 12:11
2018-01-13
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|