CVE-2018-9531

The CVE-2018-9531 issue is in Android 9 (Media framework) within AudioSpecificConfig_Parse in tpdec_asc.cpp. It describes a possible out-of-bounds write due to a missing bounds check, enabling remote code execution with no extra privileges, with exploitation requiring user interaction. No exploit...

CVE-2018-9531

In AudioSpecificConfigParse of tpdecasc.cpp, there is a possible out-of-bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-9. Android...

CVE-2017-13276

In CProgramConfigReadHeightExt of tpdecasc.cpp, there is a possible stack buffer overflow due to a missing bounds check. This could lead to a remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: 6.0, 6.0.1,...

CVE-2017-13276

CVE-2017-13276 concerns a stack buffer overflow in the Android tpdec_asc.cpp module, specifically in the function CProgramConfig_ReadHeightExt, caused by a missing bounds check. This vulnerability could enable remote code execution with the attacker having no special privileges beyond a user on t...

Google Android Buffer Overflow Vulnerability (CNVD-2018-07861)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. A stack overflow vulnerability exists in the CProgramConfigReadHeightExt of the tpdecasc.cpp file in Android, which stems from a lack of boundary detection in the program. A remot...

CVE-2017-13276

In CProgramConfigReadHeightExt of tpdecasc.cpp, there is a possible stack buffer overflow due to a missing bounds check. This could lead to a remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: 6.0, 6.0.1,...