Google

Android

7895 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2016-0840

  • EPSS 0.79%
  • Veröffentlicht 18.04.2016 00:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple stack-based buffer underflows in decoder/ih264d_parse_cavlc.c in mediaserver in Android 6.x before 2016-04-01 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka int...

10

CVE-2016-0839

  • EPSS 1.22%
  • Veröffentlicht 18.04.2016 00:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

post_proc/volume_listener.c in mediaserver in Android 6.x before 2016-04-01 mishandles deleted effect context, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka inte...

10

CVE-2016-0837

  • EPSS 1.22%
  • Veröffentlicht 18.04.2016 00:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

MPEG4Extractor.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read and ...

10

CVE-2016-0838

  • EPSS 2.23%
  • Veröffentlicht 18.04.2016 00:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Sonivox in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not check for a negative number of samples, which allows remote attackers to execute arbitrary code or cause a denial of servic...

10

CVE-2016-0836

  • EPSS 0.67%
  • Veröffentlicht 18.04.2016 00:59:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Stack-based buffer overflow in decoder/impeg2d_vld.c in mediaserver in Android 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 2581259...

10

CVE-2016-0835

  • EPSS 5.36%
  • Veröffentlicht 18.04.2016 00:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

decoder/impeg2d_dec_hdr.c in mediaserver in Android 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file that triggers a certain negative value, aka internal...

10

CVE-2016-0834

  • EPSS 0.67%
  • Veröffentlicht 18.04.2016 00:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

An unspecified media codec in mediaserver in Android 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 26220548.

10

CVE-2016-1621

  • EPSS 8.74%
  • Veröffentlicht 12.03.2016 21:59:17
  • Zuletzt bearbeitet 12.04.2025 10:46:40

libvpx in mediaserver in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49H, and 6.0 before 2016-03-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, related to libwebm/mkvp...

6.6

CVE-2016-0832

  • EPSS 0.02%
  • Veröffentlicht 12.03.2016 21:59:16
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Setup Wizard in Android 5.1.x before LMY49H and 6.x before 2016-03-01 allows physically proximate attackers to bypass the Factory Reset Protection protection mechanism and delete data via unspecified vectors, aka internal bug 25955042.

6.5

CVE-2016-0830

  • EPSS 0.25%
  • Veröffentlicht 12.03.2016 21:59:15
  • Zuletzt bearbeitet 12.04.2025 10:46:40

btif_config.c in Bluetooth in Android 6.x before 2016-03-01 allows remote attackers to cause a denial of service (memory corruption and persistent daemon crash) by triggering a large number of configuration entries, and consequently exceeding the max...