ASB-A-170583712

See a problem?
Import Source
https://storage.googleapis.com/android-osv/ASB-A-170583712.json
JSON Data
https://api.osv.dev/v1/vulns/ASB-A-170583712
Aliases
Published
2021-01-01T00:00:00Z
Modified
2026-04-24T15:37:38.793646Z
Summary
[none]
Details

In WAVSource::read of WAVExtractor.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.

References

Affected packages

Android
platform/frameworks/av

Package

Name
platform/frameworks/av

Affected ranges

Type
ECOSYSTEM
Events
Introduced
8.0:0
Fixed
8.0:2021-01-01

Affected versions

8.*
8.0

Ecosystem specific 

{
    "vanir_signatures": [
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "35969745467140153420269884546249223733",
                    "163890503151680721010229003767362840997",
                    "334944658491036062801750695156032612346",
                    "36470602929049131359654912299983453251",
                    "161513806015684829239961770287057044677",
                    "117570554900801317788512462967374031273",
                    "21923244347889040259252389135378428649",
                    "89393972909082461759015933345696837263",
                    "100409944432215240503304345631931477202",
                    "220449605193009327918995916309739600801",
                    "103753806716805338520374960634746074664",
                    "240941158663170686019195137218288933372",
                    "200024492283056690497080706707162076071",
                    "218687176731151315613749527035846505891",
                    "319536988498836699308303664318762097787",
                    "295922930630507173323190405350635329485"
                ]
            },
            "id": "ASB-A-170583712-752eb439",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/bb460899b97f260e7ed556b578318b1133335e1c",
            "target": {
                "file": "media/extractors/wav/WAVExtractor.cpp"
            }
        },
        {
            "digest": {
                "length": 3173.0,
                "function_hash": "190432385760440718665531223676726104827"
            },
            "id": "ASB-A-170583712-9f20b3df",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/bb460899b97f260e7ed556b578318b1133335e1c",
            "target": {
                "function": "WAVSource::read",
                "file": "media/extractors/wav/WAVExtractor.cpp"
            }
        },
        {
            "digest": {
                "length": 519.0,
                "function_hash": "81378374973515139533293277370691355537"
            },
            "id": "ASB-A-170583712-9f702407",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/bb460899b97f260e7ed556b578318b1133335e1c",
            "target": {
                "function": "WAVSource::WAVSource",
                "file": "media/extractors/wav/WAVExtractor.cpp"
            }
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/av/+/bb460899b97f260e7ed556b578318b1133335e1c"
    ],
    "types": [
        "ID"
    ],
    "spl": "2021-01-01",
    "severity": "High"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-170583712.json"
platform/frameworks/av

Package

Name
platform/frameworks/av

Affected ranges

Type
ECOSYSTEM
Events
Introduced
8.1:0
Fixed
8.1:2021-01-01

Affected versions

8.*
8.1

Ecosystem specific 

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 519.0,
                "function_hash": "81378374973515139533293277370691355537"
            },
            "id": "ASB-A-170583712-35f29c23",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/bb460899b97f260e7ed556b578318b1133335e1c",
            "target": {
                "function": "WAVSource::WAVSource",
                "file": "media/extractors/wav/WAVExtractor.cpp"
            }
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "35969745467140153420269884546249223733",
                    "163890503151680721010229003767362840997",
                    "334944658491036062801750695156032612346",
                    "36470602929049131359654912299983453251",
                    "161513806015684829239961770287057044677",
                    "117570554900801317788512462967374031273",
                    "21923244347889040259252389135378428649",
                    "89393972909082461759015933345696837263",
                    "100409944432215240503304345631931477202",
                    "220449605193009327918995916309739600801",
                    "103753806716805338520374960634746074664",
                    "240941158663170686019195137218288933372",
                    "200024492283056690497080706707162076071",
                    "218687176731151315613749527035846505891",
                    "319536988498836699308303664318762097787",
                    "295922930630507173323190405350635329485"
                ]
            },
            "id": "ASB-A-170583712-4a12fb49",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/bb460899b97f260e7ed556b578318b1133335e1c",
            "target": {
                "file": "media/extractors/wav/WAVExtractor.cpp"
            }
        },
        {
            "digest": {
                "length": 3173.0,
                "function_hash": "190432385760440718665531223676726104827"
            },
            "id": "ASB-A-170583712-a144de18",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/bb460899b97f260e7ed556b578318b1133335e1c",
            "target": {
                "function": "WAVSource::read",
                "file": "media/extractors/wav/WAVExtractor.cpp"
            }
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/av/+/bb460899b97f260e7ed556b578318b1133335e1c"
    ],
    "types": [
        "ID"
    ],
    "spl": "2021-01-01",
    "severity": "High"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-170583712.json"
platform/frameworks/av

Package

Name
platform/frameworks/av

Affected ranges

Type
ECOSYSTEM
Events
Introduced
9:0
Fixed
9:2021-01-01

Affected versions

Other
9

Ecosystem specific 

{
    "vanir_signatures": [
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "35969745467140153420269884546249223733",
                    "163890503151680721010229003767362840997",
                    "334944658491036062801750695156032612346",
                    "36470602929049131359654912299983453251",
                    "161513806015684829239961770287057044677",
                    "117570554900801317788512462967374031273",
                    "21923244347889040259252389135378428649",
                    "89393972909082461759015933345696837263",
                    "100409944432215240503304345631931477202",
                    "220449605193009327918995916309739600801",
                    "103753806716805338520374960634746074664",
                    "240941158663170686019195137218288933372",
                    "200024492283056690497080706707162076071",
                    "218687176731151315613749527035846505891",
                    "319536988498836699308303664318762097787",
                    "295922930630507173323190405350635329485"
                ]
            },
            "id": "ASB-A-170583712-01e551c6",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/bb460899b97f260e7ed556b578318b1133335e1c",
            "target": {
                "file": "media/extractors/wav/WAVExtractor.cpp"
            }
        },
        {
            "digest": {
                "length": 519.0,
                "function_hash": "81378374973515139533293277370691355537"
            },
            "id": "ASB-A-170583712-9c667588",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/bb460899b97f260e7ed556b578318b1133335e1c",
            "target": {
                "function": "WAVSource::WAVSource",
                "file": "media/extractors/wav/WAVExtractor.cpp"
            }
        },
        {
            "digest": {
                "length": 3173.0,
                "function_hash": "190432385760440718665531223676726104827"
            },
            "id": "ASB-A-170583712-e311d696",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/bb460899b97f260e7ed556b578318b1133335e1c",
            "target": {
                "function": "WAVSource::read",
                "file": "media/extractors/wav/WAVExtractor.cpp"
            }
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/av/+/bb460899b97f260e7ed556b578318b1133335e1c"
    ],
    "types": [
        "ID"
    ],
    "spl": "2021-01-01",
    "severity": "High"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-170583712.json"
platform/frameworks/av

Package

Name
platform/frameworks/av

Affected ranges

Type
ECOSYSTEM
Events
Introduced
10:0
Fixed
10:2021-01-01

Affected versions

Other
10

Ecosystem specific 

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 3173.0,
                "function_hash": "190432385760440718665531223676726104827"
            },
            "id": "ASB-A-170583712-3c9e4e47",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/bb460899b97f260e7ed556b578318b1133335e1c",
            "target": {
                "function": "WAVSource::read",
                "file": "media/extractors/wav/WAVExtractor.cpp"
            }
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "35969745467140153420269884546249223733",
                    "163890503151680721010229003767362840997",
                    "334944658491036062801750695156032612346",
                    "36470602929049131359654912299983453251",
                    "161513806015684829239961770287057044677",
                    "117570554900801317788512462967374031273",
                    "21923244347889040259252389135378428649",
                    "89393972909082461759015933345696837263",
                    "100409944432215240503304345631931477202",
                    "220449605193009327918995916309739600801",
                    "103753806716805338520374960634746074664",
                    "240941158663170686019195137218288933372",
                    "200024492283056690497080706707162076071",
                    "218687176731151315613749527035846505891",
                    "319536988498836699308303664318762097787",
                    "295922930630507173323190405350635329485"
                ]
            },
            "id": "ASB-A-170583712-57e3b4b9",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/bb460899b97f260e7ed556b578318b1133335e1c",
            "target": {
                "file": "media/extractors/wav/WAVExtractor.cpp"
            }
        },
        {
            "digest": {
                "length": 519.0,
                "function_hash": "81378374973515139533293277370691355537"
            },
            "id": "ASB-A-170583712-a4e60525",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/bb460899b97f260e7ed556b578318b1133335e1c",
            "target": {
                "function": "WAVSource::WAVSource",
                "file": "media/extractors/wav/WAVExtractor.cpp"
            }
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/av/+/bb460899b97f260e7ed556b578318b1133335e1c"
    ],
    "types": [
        "ID"
    ],
    "spl": "2021-01-01",
    "severity": "High"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-170583712.json"
platform/frameworks/av

Package

Name
platform/frameworks/av

Affected ranges

Type
ECOSYSTEM
Events
Introduced
11:0
Fixed
11:2021-01-01

Affected versions

Other
11

Ecosystem specific 

{
    "vanir_signatures": [
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "35969745467140153420269884546249223733",
                    "163890503151680721010229003767362840997",
                    "334944658491036062801750695156032612346",
                    "36470602929049131359654912299983453251",
                    "161513806015684829239961770287057044677",
                    "117570554900801317788512462967374031273",
                    "21923244347889040259252389135378428649",
                    "89393972909082461759015933345696837263",
                    "100409944432215240503304345631931477202",
                    "220449605193009327918995916309739600801",
                    "103753806716805338520374960634746074664",
                    "240941158663170686019195137218288933372",
                    "200024492283056690497080706707162076071",
                    "218687176731151315613749527035846505891",
                    "319536988498836699308303664318762097787",
                    "295922930630507173323190405350635329485"
                ]
            },
            "id": "ASB-A-170583712-0ba3a3fc",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/bb460899b97f260e7ed556b578318b1133335e1c",
            "target": {
                "file": "media/extractors/wav/WAVExtractor.cpp"
            }
        },
        {
            "digest": {
                "length": 3173.0,
                "function_hash": "190432385760440718665531223676726104827"
            },
            "id": "ASB-A-170583712-7a91cdf6",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/bb460899b97f260e7ed556b578318b1133335e1c",
            "target": {
                "function": "WAVSource::read",
                "file": "media/extractors/wav/WAVExtractor.cpp"
            }
        },
        {
            "digest": {
                "length": 519.0,
                "function_hash": "81378374973515139533293277370691355537"
            },
            "id": "ASB-A-170583712-f602efd7",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/bb460899b97f260e7ed556b578318b1133335e1c",
            "target": {
                "function": "WAVSource::WAVSource",
                "file": "media/extractors/wav/WAVExtractor.cpp"
            }
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/av/+/bb460899b97f260e7ed556b578318b1133335e1c"
    ],
    "types": [
        "ID"
    ],
    "spl": "2021-01-01",
    "severity": "High"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-170583712.json"