280 matches found
Information disclosure
In libhevc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112552517...
Information disclosure
In libhevc, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112326216...
Information disclosure
In libhevc, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111764725...
Information disclosure
In libhevc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112859934...
CVE-2019-9420
In libhevc, there is a possible out of bounds read due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111272481...
CVE-2019-9406
In libhevc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112552517...
CVE-2019-9420
CVE-2019-9420 describes an out-of-bounds read in the Android media stack (libhevc) caused by an integer overflow. This can lead to a remote denial-of-service on Android 10 devices, with exploitation requiring user interaction. The available connected documents confirm the issue location (libhevc)...
CVE-2019-9409
CVE-2019-9409 affects the Android 10 media processing stack (libhevc). The issue is an information-disclosure vulnerability caused by uninitialized data, enabling remote information disclosure with no execution privileges required. Exploitation requires user interaction. The connected documents r...
CVE-2019-9409
In libhevc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112272091...
CVE-2019-9406
CVE-2019-9406 affects libhevc in Android 10. The vulnerability enables information disclosure via uninitialized data within the Media/Video processing path, potentially allowing remote information disclosure without extra execution privileges. Exploitation is described as requiring user interacti...
CVE-2019-9334
CVE-2019-9334 concerns the Android 10 ecosystem where a vulnerability in the Media/Library stack (libhevc) allows information disclosure via uninitialized data. The issue affects Android 10 and is described as enabling remote information disclosure with no additional execution privileges; exploit...
CVE-2019-9318
In libhevc, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111764725...
CVE-2019-9334
In libhevc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112859934...
CVE-2019-9318
CVE-2019-9318: A missing variable initialization in libhevc on Android-10 (Android 10) can cause information disclosure. Exploitation requires user interaction; no remote code execution is stated. Affected component: libhevc in Android 10, with CVE details echoed across NVD/Red Hat/CVEs. Mitigati...
CVE-2019-9315
CVE-2019-9315 affects the Android 10 Media Framework component libhevc, where a missing variable initialization creates a condition for information disclosure. The issue could permit remote disclosure without additional execution privileges; exploitation requires user interaction. The CVSS data i...
CVE-2019-9315
In libhevc, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112326216...
libhevc:hevc_dec_fuzzer: Stack-use-after-return in ihevcd_process_thread
Project: https://android.googlesource.com/platform/external/libhevc Detailed Report: https://oss-fuzz.com/testcase?key=5176835272343552 Project: libhevc Fuzzing Engine: libFuzzer Fuzz Target: hevcdecfuzzer Job Type: libfuzzerasani386libhevc Platform Id: linux Crash Type: Stack-use-after-return RE...
libhevc:hevc_dec_fuzzer: Heap-use-after-free in ihevcd_jobq_lock
Project: https://android.googlesource.com/platform/external/libhevc Detailed Report: https://oss-fuzz.com/testcase?key=5093765538119680 Project: libhevc Fuzzing Engine: libFuzzer Fuzz Target: hevcdecfuzzer Job Type: libfuzzerasani386libhevc Platform Id: linux Crash Type: Heap-use-after-free READ ...
libhevc:hevc_dec_fuzzer: Stack-use-after-return in ihevcd_process_thread
Project: https://android.googlesource.com/platform/external/libhevc Detailed Report: https://oss-fuzz.com/testcase?key=5728826448936960 Project: libhevc Fuzzing Engine: libFuzzer Fuzz Target: hevcdecfuzzer Job Type: libfuzzerasanlibhevc Platform Id: linux Crash Type: Stack-use-after-return READ 8...
libhevc:hevc_dec_fuzzer: Heap-buffer-overflow in ihevcd_get_mv_ctb
Project: https://android.googlesource.com/platform/external/libhevc Detailed Report: https://oss-fuzz.com/testcase?key=5703717080268800 Project: libhevc Fuzzing Engine: libFuzzer Fuzz Target: hevcdecfuzzer Job Type: libfuzzerasani386libhevc Platform Id: linux Crash Type: Heap-buffer-overflow WRIT...