OSV-2026-815 Heap-buffer-overflow in ihevcd_sao_shift_ctb

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=516422427 Crash type: Heap-buffer-overflow READ 1 Crash state: ihevcdsaoshiftctb ihevcdprocess ihevcdparseslicedata...

The vulnerability of the ihevcd_sao_shift_ctb function in the Android operating system allows a hacker to disclose protected information.

The vulnerability of the ihevcdsaoshiftctb function ihevcdsao.c in the Android operating system is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by security measures...

Google Android out-of-bounds write vulnerability (CNVD-2019-01565)

Android is a free and open source Linux-based operating system led and developed by Google Inc. and the Open Handset Alliance. An out-of-bounds write vulnerability exists in ihevcdsao.c of ihevcdsaoshiftctb in Google Android 7.0, 7.1.1, 7.1.2, 8.0, 8.1, and 9. The vulnerability stems from a lack ...

CVE-2018-9552

In ihevcdsaoshiftctb of ihevcdsao.c there is a possible out of bounds write due to missing bounds check. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1...