CVE-2017-13222
- EPSS 0.66%
- Veröffentlicht 12.01.2018 23:29:02
- Zuletzt bearbeitet 21.11.2024 03:11:11
An information disclosure vulnerability in the Upstream kernel kernel. Product: Android. Versions: Android kernel. Android ID: A-38159576.
CVE-2017-13225
- EPSS 0.89%
- Veröffentlicht 12.01.2018 23:29:02
- Zuletzt bearbeitet 21.11.2024 03:11:11
In libMtkOmxVdec.so there is a possible heap buffer overflow. This could lead to a remote elevation of privilege enabling code execution as a privileged process with no additional execution privileges needed. User interaction is needed for exploitati...
CVE-2017-13226
- EPSS 0.14%
- Veröffentlicht 12.01.2018 23:29:02
- Zuletzt bearbeitet 21.11.2024 03:11:11
An elevation of privilege vulnerability in the MediaTek mtk. Product: Android. Versions: Android kernel. Android ID: A-32591194. References: M-ALPS03149184.
CVE-2017-13194
- EPSS 1.81%
- Veröffentlicht 12.01.2018 23:29:01
- Zuletzt bearbeitet 21.11.2024 03:11:08
A vulnerability in the Android media framework (libvpx) related to odd frame width. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-64710201.
CVE-2017-13195
- EPSS 1.73%
- Veröffentlicht 12.01.2018 23:29:01
- Zuletzt bearbeitet 21.11.2024 03:11:08
In the ihevcd_parse_sps function of ihevcd_parse_headers.c, several parameter values could be negative which could lead to negative indexes which could lead to an infinite loop. This could lead to a remote denial of service of a critical system proce...
CVE-2017-13196
- EPSS 2.17%
- Veröffentlicht 12.01.2018 23:29:01
- Zuletzt bearbeitet 21.11.2024 03:11:08
In several places in ihevcd_decode.c, a dead loop could occur due to incomplete frames which could lead to memory leaks. This could lead to a remote denial of service of a critical system process with no additional execution privileges needed. User i...
CVE-2017-13197
- EPSS 2.17%
- Veröffentlicht 12.01.2018 23:29:01
- Zuletzt bearbeitet 21.11.2024 03:11:08
In the ihevcd_parse_slice.c function, slave threads are not joined if there is an error. This could lead to a remote denial of service of a critical system process with no additional execution privileges needed. User interaction is not needed for exp...
CVE-2017-13198
- EPSS 0.59%
- Veröffentlicht 12.01.2018 23:29:01
- Zuletzt bearbeitet 21.11.2024 03:11:08
A vulnerability in the Android media framework (ex) related to composition of frames lacking a color map. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-68399117.
CVE-2017-13199
- EPSS 2.17%
- Veröffentlicht 12.01.2018 23:29:01
- Zuletzt bearbeitet 21.11.2024 03:11:08
In Bitmap.ccp if Bitmap.nativeCreate fails an out of memory exception is not thrown leading to a java.io.IOException later on. This could lead to a remote denial of service of a critical system process with no additional execution privileges needed. ...
CVE-2017-13200
- EPSS 0.44%
- Veröffentlicht 12.01.2018 23:29:01
- Zuletzt bearbeitet 21.11.2024 03:11:08
An information disclosure vulnerability in the Android media framework (av) related to id3 unsynchronization. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-63100526.