Back to search
CVE-2019-9278
Published: Sep 27, 2019
Modified: Aug 4, 2024
PUBLISHED
Description
In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112537774
| Vendor | Product | Versions |
|---|---|---|
n/a | Android | affected Android-10 |
References
https://source.android.com/security/bulletin/android-10
x_refsource_MISC
[oss-security] 20191025 Security fixes from Android 10 release which are relevant outside the Android ecosystem?
mailing-list
x_refsource_MLIST
[oss-security] 20191026 Re: Security fixes from Android 10 release which are relevant outside the Android ecosystem?
mailing-list
x_refsource_MLIST
[oss-security] 20191107 Re: Security fixes from Android 10 release which are relevant outside the Android ecosystem?
mailing-list
x_refsource_MLIST
DSA-4618
vendor-advisory
x_refsource_DEBIAN
[debian-lts-announce] 20200210 [SECURITY] [DLA 2100-1] libexif security update
mailing-list
x_refsource_MLIST
20200210 [SECURITY] [DSA 4618-1] libexif security update
mailing-list
x_refsource_BUGTRAQ
https://github.com/libexif/libexif/issues/26
x_refsource_CONFIRM
USN-4277-1
vendor-advisory
x_refsource_UBUNTU
openSUSE-SU-2020:0264
vendor-advisory
x_refsource_SUSE
openSUSE-SU-2020:0793
vendor-advisory
x_refsource_SUSE
FEDORA-2020-b4db792558
vendor-advisory
x_refsource_FEDORA
FEDORA-2020-085150ac6e
vendor-advisory
x_refsource_FEDORA
GLSA-202007-05
vendor-advisory
x_refsource_GENTOO
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now