CVE-2017-13179
CVE-2017-13179 describes an out-of-bounds write in SoftHEVC caused by a use-after-free in ihevcd_allocate_static_bufs and ihevcd_create. Both ps_codec_obj and ps_create_op->s_ivd_create_op_t.pv_handle reference the same memory, allowing the former to be freed without clearing pv_handle. This c...