The vulnerability of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the mp3dec/SoftMP3.cpp file in the libstagefright component of the Android operating system’s media server is related to the lack of additional checks for the ratio between the allocated memory size and the frame size. Exploiting this vulnerability allows a remote attacker to...

CVE-2016-2486

mp3dec/SoftMP3.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 does not validate the relationship between allocated memory and the frame size, which allows attackers to gain privileges via a crafted application, a...