ghsa-5wg8-3j49-pwq7
Vulnerability from github
Published
2022-05-14 03:29
Modified
2022-05-14 03:29
Severity
Details
libOmxVenc in Android for MSM, Firefox OS for MSM, and QRD Android copies the output buffer to an application with the "filled length", which is larger than the output buffer's actual size, leading to an information disclosure problem in the context of mediaserver.
{ "affected": [], "aliases": [ "CVE-2017-11087" ], "database_specific": { "cwe_ids": [ "CWE-200" ], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2018-03-30T21:29:00Z", "severity": "HIGH" }, "details": "libOmxVenc in Android for MSM, Firefox OS for MSM, and QRD Android copies the output buffer to an application with the \"filled length\", which is larger than the output buffer\u0027s actual size, leading to an information disclosure problem in the context of mediaserver.", "id": "GHSA-5wg8-3j49-pwq7", "modified": "2022-05-14T03:29:32Z", "published": "2022-05-14T03:29:32Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-11087" }, { "type": "WEB", "url": "https://source.android.com/security/bulletin/pixel/2018-02-01" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/103669" } ], "schema_version": "1.4.0", "severity": [ { "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "type": "CVSS_V3" } ] }
Loading...