Google Android integer overflow vulnerability (CNVD-2019-01563)

Android is a free and open source Linux-based operating system led and developed by Google Inc. and the Open Handset Alliance. An integer overflow vulnerability exists in ParsePayloadHeader in payloadmetadata.cc in Google Android 9. A remote attacker could exploit this vulnerability to cause an...

Integer overflow

In ParsePayloadHeader of payloadmetadata.cc, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-9...

CVE-2018-9556

CVE-2018-9556 affects Android 9, where ParsePayloadHeader in payload_metadata.cc may overflow an integer, causing an out-of-bounds write and remote escalation of privilege with no user interaction. Exploitation details are not provided in the connected documents. The Android Security Bulletin not...

CVE-2018-9556

In ParsePayloadHeader of payloadmetadata.cc, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-9...