EUVD-2015-3880

Malware in sbrugna...

CVE-2015-3844

The getProcessRecordLocked method in services/core/java/com/android/server/am/ActivityManagerService.java in ActivityManager in Android before 5.1.1 LMY48I allows attackers to trigger incorrect process loading via a crafted application, as demonstrated by interfering with use of the Settings...

Code injection

The getProcessRecordLocked method in services/core/java/com/android/server/am/ActivityManagerService.java in ActivityManager in Android before 5.1.1 LMY48I allows attackers to trigger incorrect process loading via a crafted application, as demonstrated by interfering with use of the Settings...

CVE-2015-3844

The CVE-2015-3844 entry concerns Android’s ActivityManagerService.getProcessRecordLocked() before 5.1.1 (LMY48I). The issue arises when the method does not verify that an application’s process name matches its package name, which can lead ActivityManager to load the wrong process for certain task...

CVE-2015-3844

The getProcessRecordLocked method in services/core/java/com/android/server/am/ActivityManagerService.java in ActivityManager in Android before 5.1.1 LMY48I allows attackers to trigger incorrect process loading via a crafted application, as demonstrated by interfering with use of the Settings...

Google Chrome < 19.0.1084.46 Multiple Vulnerabilities

Binary data 800898.prm...

Google Chrome < 19.0.1084.46 Multiple Vulnerabilities

The version of Google Chrome installed on the remote host is earlier than 19.0.1084.46 and is, therefore, affected by the following vulnerabilities : - Video content with FTP can cause crashes. CVE-2011-3083 - Internal links are not loaded in their own process. CVE-2011-3084 - Lengthy auto-filled...