CVE-2016-2476
CVE-2016-2476 affects Mediaserver in Android (versions 4.x up to 4.4.3, 5.0.x up to 5.0.1, 5.1.x up to 5.1.0, and 6.x prior to 2016-06-01). The issue is improper validation of OMX buffer sizes, enabling a local attacker with a crafted app to gain privileges (Signature or SignatureOrSystem). The v...