8.8
CVE-2019-11932
- EPSS 44.53%
- Veröffentlicht 03.10.2019 22:15:10
- Zuletzt bearbeitet 21.11.2024 04:22:00
- Quelle cve-assign@fb.com
- CVE-Watchlists
- Unerledigt
LoginA double free vulnerability in the DDGifSlurp function in decoding.c in the android-gif-drawable library before version 1.2.18, as used in WhatsApp for Android before version 2.19.244 and many other Android applications, allows remote attackers to execute arbitrary code or cause a denial of service when the library is used to parse a specially crafted GIF image.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Android-gif-drawable Project ≫ Android-gif-drawable Version < 1.2.18
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 44.53% | 0.986 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 8.8 | 2.8 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 6.8 | 8.6 | 6.4 |
AV:N/AC:M/Au:N/C:P/I:P/A:P
|
CWE-415 Double Free
The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.
http://packetstormsecurity.com/files/154867/Whatsapp-2.19.216-Remote-Code-Execution.html
http://packetstormsecurity.com/files/158306/WhatsApp-android-gif-drawable-Double-Free.html
http://seclists.org/fulldisclosure/2019/Nov/27
https://awakened1712.github.io/hacking/hacking-whatsapp-gif-rce/
https://gist.github.com/wdormann/874198c1bd29c7dd2157d9fc1d858263
https://github.com/koral--/android-gif-drawable/commit/cc5b4f8e43463995a84efd594f89a21f906c2d20
https://github.com/koral--/android-gif-drawable/pull/673
https://github.com/koral--/android-gif-drawable/pull/673/commits/4944c92761e0a14f04868cbcf4f4e86fd4b7a4a9
https://www.facebook.com/security/advisories/cve-2019-11932