CVE-2019-1987

In onSetSampleX of SkSwizzler.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1...

CVE-2019-1987

CVE-2019-1987 affects Google Android Framework components (notably a flaw in SkSwizzler.cpp) where a missing bounds check allows an out-of-bounds write, enabling remote code execution in a privileged context. Impact is described as high/severe, requiring user interaction for exploitation, with af...

CVE-2019-1987

creationtimestamp| type| source ---|---|--- 2019-02-07 06:11:56+00:00| seen| https://t.me/informationsecuritychannel/24467 2019-02-07 19:42:22+00:00| published-proof-of-concept| https://t.me/whitehat2/87...

Google Patches Critical .PNG Image Bug

Google has patched a critical vulnerability in its current and legacy versions of its Android operating system, which allow an attacker to send a specially crafted Portable Network Graphics .PNG image file to a targeted device and execute arbitrary code. In its February Android Security Bulletin,...