Articles with tag: Libstagefright
POSTED BY: Anestis Bechtsoudis / 25.07.2016

Android stagefright impeg2d_vld_decode stack buffer overflows

CENSUS ID:CENSUS-2016-0006
CVE ID:CVE-2016-0836
Android ID:25812590
Affected Products:Android OS 6.0 — 6.0.1
Class:Out-of-bounds Write (CWE-787)
Discovered by:Anestis Bechtsoudis

Android provides a media playback engine at the native level called Stagefright that comes built-in with software-based codecs for several popular media formats. Stagefright features for audio and video playback include integration with OpenMAX codecs, session management, time-synchronized rendering, transport control, and DRM.


POSTED BY: Anestis Bechtsoudis / 22.07.2016

Android stagefright impeg2d_dec_pic_data_thread integer overflow

CENSUS ID:CENSUS-2016-0005
CVE ID:CVE-2016-0835
Android ID:26070014
Affected Products:Android OS 6.0 — 6.0.1
Class:Integer Overflow (CWE-190) / Underflow (CWE-191)
Discovered by:Anestis Bechtsoudis

Android provides a media playback engine at the native level called Stagefright that comes built-in with software-based codecs for several popular media formats. Stagefright features for audio and video playback include integration with OpenMAX codecs, session management, time-synchronized rendering, transport control, and DRM.


POSTED BY: Anestis Bechtsoudis / 04.05.2016

Android stagefright ih264d_read_mmco_commands libavc heap overflow

CENSUS ID:CENSUS-2016-0004
CVE ID:CVE-2016-0842
Android ID:25818142
Affected Products:Android OS 6.0 — 6.0.1
Class:Out-of-bounds Write (CWE-787)
Discovered by:Anestis Bechtsoudis

Android provides a media playback engine at the native level called Stagefright that comes built-in with software-based codecs for several popular media formats. Stagefright features for audio and video playback include integration with OpenMAX codecs, session management, time-synchronized rendering, transport control, and DRM.


POSTED BY: Anestis Bechtsoudis / 23.03.2016

Android stagefright libavc ih264d_decode heap overflow

CENSUS ID:CENSUS-2016-0003
CVE ID:CVE-2016-0816
Android ID:25928803
Affected Products:Android OS 6.0 — 6.0.1
Class:Out-of-bounds Write (CWE-787)
Discovered by:Anestis Bechtsoudis

Android provides a media playback engine at the native level called Stagefright that comes built-in with software-based codecs for several popular media formats. Stagefright features for audio and video playback include integration with OpenMAX codecs, session management, time-synchronized rendering, transport control, and DRM.