Google

Android

7930 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.4

CVE-2016-0846

  • EPSS 0.53%
  • Veröffentlicht 18.04.2016 00:59:10
  • Zuletzt bearbeitet 12.04.2025 10:46:40

libs/binder/IMemory.cpp in the IMemory Native Interface in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not properly consider the heap size, which allows attackers to gain privileges via a crafted a...

8.4

CVE-2016-0844

  • EPSS 0.02%
  • Veröffentlicht 18.04.2016 00:59:09
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Qualcomm RF driver in Android 6.x before 2016-04-01 does not properly restrict access to socket ioctl calls, which allows attackers to gain privileges via a crafted application, aka internal bug 26324307.

8.4

CVE-2016-0843

  • EPSS 0.02%
  • Veröffentlicht 18.04.2016 00:59:08
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Qualcomm ARM processor performance-event manager in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows attackers to gain privileges via a crafted application, aka internal bug 25801197.

10

CVE-2016-0842

  • EPSS 0.79%
  • Veröffentlicht 18.04.2016 00:59:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The H.264 decoder in libstagefright in Android 6.x before 2016-04-01 mishandles Memory Management Control Operation (MMCO) data, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted me...

10

CVE-2016-0841

  • EPSS 1.22%
  • Veröffentlicht 18.04.2016 00:59:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

media/libmedia/mediametadataretriever.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 mishandles cleared service binders, which allows remote attackers to execute arbitrary code or cau...

10

CVE-2016-0840

  • EPSS 0.79%
  • Veröffentlicht 18.04.2016 00:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple stack-based buffer underflows in decoder/ih264d_parse_cavlc.c in mediaserver in Android 6.x before 2016-04-01 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka int...

10

CVE-2016-0839

  • EPSS 1.22%
  • Veröffentlicht 18.04.2016 00:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

post_proc/volume_listener.c in mediaserver in Android 6.x before 2016-04-01 mishandles deleted effect context, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka inte...

10

CVE-2016-0837

  • EPSS 1.22%
  • Veröffentlicht 18.04.2016 00:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

MPEG4Extractor.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read and ...

10

CVE-2016-0838

  • EPSS 2.23%
  • Veröffentlicht 18.04.2016 00:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Sonivox in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not check for a negative number of samples, which allows remote attackers to execute arbitrary code or cause a denial of servic...

10

CVE-2016-0836

  • EPSS 0.67%
  • Veröffentlicht 18.04.2016 00:59:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Stack-based buffer overflow in decoder/impeg2d_vld.c in mediaserver in Android 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 2581259...