2 matches found
Android Mitigation Bypass Vulnerability
Because of a design bug in IOMX, the user-supplied sizes in the GETPARAMETER and SETPARAMETER calls ar e discarded before calling in to the responsible OMX code-paths. This has led to a variety of overflow-type bugs. Android: mitigation bypass - the guard page creation in IOMX can fail...
CVE-2016-6717
CVE-2016-6717 corresponds to an elevation-of-privilege in Android’s Mediaserver. A local malicious app could execute code in a privileged process due to memory/parameter handling in Mediaserver when processing media data. Affected Android versions span 4.x up to 7.0 (pre-2016-11-01 and pre-2016-1...