QwikSec

Security Database

CVE

CWE

Training

CVE-2016-1621

Published: Mar 12, 2016

Modified: Aug 5, 2024

PUBLISHED

Description

libvpx in mediaserver in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49H, and 6.0 before 2016-03-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, related to libwebm/mkvparser.cpp and other files, aka internal bug 23452792.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://android.googlesource.com/platform/external/libvpx/+/04839626ed859623901ebd3a5fd483982186b59d

x_refsource_CONFIRM

http://source.android.com/security/bulletin/2016-03-01.html

x_refsource_CONFIRM

https://android.googlesource.com/platform/external/libvpx/+/5a9753fca56f0eeb9f61e342b2fccffc364f9426

x_refsource_CONFIRM

vendor-advisory

x_refsource_GENTOO

https://android.googlesource.com/platform/frameworks/av/+/5a6788730acfc6fd8f4a6ef89d2c376572a26b55

x_refsource_CONFIRM

vdb-entry

x_refsource_BID

FEDORA-2016-fae59061fe

vendor-advisory

x_refsource_FEDORA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.