The ih264d decoder in mediaserver in Android 6.x before 2016-08-01 does not initialize certain structure members, which allows remote attackers to cause a denial of service (device hang or reboot) via a crafted media file, aka internal bug 29023649.
References
Link | Resource |
---|---|
http://source.android.com/security/bulletin/2016-08-01.html | Vendor Advisory |
http://www.securityfocus.com/bid/92221 | |
https://android.googlesource.com/platform/external/libavc/+/326fe991a4b7971e8aeaf4ac775491dd8abd85bb | Issue Tracking Patch |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: google_android
Published: 2016-08-05T20:00:00
Updated: 2016-11-25T19:57:01
Reserved: 2016-03-30T00:00:00
Link: CVE-2016-3829
JSON object: View
NVD Information
Status : Modified
Published: 2016-08-05T20:59:19.307
Modified: 2016-11-28T20:12:30.017
Link: CVE-2016-3829
JSON object: View
Redhat Information
No data.
CWE