OSV-2020-1299 UNKNOWN WRITE in ideint_weave_blk

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=17084 Crash type: UNKNOWN WRITE Crash state: ideintweaveblk ideintprocess impeg2ddeinterlace...

OSV-2020-1142 UNKNOWN WRITE in ideint_weave_blk

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=16606 Crash type: UNKNOWN WRITE Crash state: ideintweaveblk ideintprocess impeg2ddeinterlace...

Heap overflow

In ideintweaveblk of ideintutils.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-1403248...

CVE-2020-0190

CVE-2020-0190 affects Android 10 with a vulnerability in ideint_weave_blk of ideint_utils.c caused by a heap buffer overflow leading to an out-of-bounds write. This could enable remote code execution. Exploitation requires user interaction per the description. The Pixel security bulletin lists CV...

libmpeg2:mpeg2_dec_fuzzer: Crash in ideint_weave_blk

Project: https://android.googlesource.com/platform/external/libmpeg2 Detailed Report: https://oss-fuzz.com/testcase?key=5753309893230592 Project: libmpeg2 Fuzzing Engine: libFuzzer Fuzz Target: mpeg2decfuzzer Job Type: libfuzzerasanlibmpeg2 Platform Id: linux Crash Type: UNKNOWN WRITE Crash...