In M3UParser::parse of M3UParser.cpp, there is a memory resource exhaustion due to a large loop of pushing items into a vector. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-68399439.
References
Link | Resource |
---|---|
https://source.android.com/security/bulletin/2018-04-01 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: google_android
Published: 2018-04-02T00:00:00
Updated: 2018-04-04T15:57:01
Reserved: 2017-08-23T00:00:00
Link: CVE-2017-13279
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-04-04T16:29:00.573
Modified: 2019-10-03T00:03:26.223
Link: CVE-2017-13279
JSON object: View
Redhat Information
No data.
CWE