decoder/ih264d_api.c in mediaserver in Android 6.x before 2016-08-01 mishandles invalid PPS and SPS NAL units, which allows remote attackers to cause a denial of service (device hang or reboot) via a crafted media file, aka internal bug 28835995.
References
Link | Resource |
---|---|
http://source.android.com/security/bulletin/2016-08-01.html | Vendor Advisory |
http://www.securityfocus.com/bid/92221 | |
https://android.googlesource.com/platform/external/libavc/+/7554755536019e439433c515eeb44e701fb3bfb2 | Issue Tracking Patch |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: google_android
Published: 2016-08-05T20:00:00
Updated: 2016-11-25T19:57:01
Reserved: 2016-03-30T00:00:00
Link: CVE-2016-3828
JSON object: View
NVD Information
Status : Modified
Published: 2016-08-05T20:59:18.083
Modified: 2016-11-28T20:12:28.920
Link: CVE-2016-3828
JSON object: View
Redhat Information
No data.
CWE