ASB-A-182152757

See a problem?
Import Source
https://storage.googleapis.com/android-osv/ASB-A-182152757.json
JSON Data
https://api.osv.dev/v1/vulns/ASB-A-182152757
Aliases
Published
2021-09-01T00:00:00Z
Modified
2026-04-17T15:55:28.020024Z
Summary
[none]
Details

In ih264dmarkerrsliceskip of ih264dparsepslice.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.

References

Affected packages

Android / platform/external/libavc

Package

Name
platform/external/libavc

Affected ranges

Type
ECOSYSTEM
Events
Introduced
8.1:0
Fixed
8.1:2021-09-01

Affected versions

8.*
8.1

Ecosystem specific 

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 16825.0,
                "function_hash": "123133853663000408978406452059135005748"
            },
            "id": "ASB-A-182152757-2fede1f9",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/external/libavc/+/a88e0683a420d7ee9aa4b6f41f94cb8dc0c5e040",
            "target": {
                "function": "ih264d_parse_decode_slice",
                "file": "decoder/ih264d_parse_slice.c"
            }
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "119945963440541538035784979728125816983",
                    "255224296024612985390484146779658378250",
                    "160388031835788071854010997219348523817",
                    "60516511112450173609462386312560336575",
                    "63902476905212605000620325702263251555",
                    "275929453535975115840424296357929607942",
                    "254429859499802782634724683805821366471",
                    "154945095007020849168726000600056374878",
                    "107239300484544486887623642710182168076",
                    "328091311931346925764590564347209009119",
                    "9674616957337096999271654405362951351",
                    "329916013161882525599151527348539263851"
                ]
            },
            "id": "ASB-A-182152757-c614f4a9",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/external/libavc/+/a88e0683a420d7ee9aa4b6f41f94cb8dc0c5e040",
            "target": {
                "file": "decoder/ih264d_parse_slice.c"
            }
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/external/libavc/+/a88e0683a420d7ee9aa4b6f41f94cb8dc0c5e040"
    ],
    "types": [
        "ID"
    ],
    "spl": "2021-09-01",
    "severity": "High"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-182152757.json"

Android / platform/external/libavc

Package

Name
platform/external/libavc

Affected ranges

Type
ECOSYSTEM
Events
Introduced
9:0
Fixed
9:2021-09-01

Affected versions

Other
9

Ecosystem specific 

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 16825.0,
                "function_hash": "123133853663000408978406452059135005748"
            },
            "id": "ASB-A-182152757-b3fb194d",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/external/libavc/+/a88e0683a420d7ee9aa4b6f41f94cb8dc0c5e040",
            "target": {
                "function": "ih264d_parse_decode_slice",
                "file": "decoder/ih264d_parse_slice.c"
            }
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "119945963440541538035784979728125816983",
                    "255224296024612985390484146779658378250",
                    "160388031835788071854010997219348523817",
                    "60516511112450173609462386312560336575",
                    "63902476905212605000620325702263251555",
                    "275929453535975115840424296357929607942",
                    "254429859499802782634724683805821366471",
                    "154945095007020849168726000600056374878",
                    "107239300484544486887623642710182168076",
                    "328091311931346925764590564347209009119",
                    "9674616957337096999271654405362951351",
                    "329916013161882525599151527348539263851"
                ]
            },
            "id": "ASB-A-182152757-ef6c7100",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/external/libavc/+/a88e0683a420d7ee9aa4b6f41f94cb8dc0c5e040",
            "target": {
                "file": "decoder/ih264d_parse_slice.c"
            }
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/external/libavc/+/a88e0683a420d7ee9aa4b6f41f94cb8dc0c5e040"
    ],
    "types": [
        "ID"
    ],
    "spl": "2021-09-01",
    "severity": "High"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-182152757.json"

Android / platform/external/libavc

Package

Name
platform/external/libavc

Affected ranges

Type
ECOSYSTEM
Events
Introduced
10:0
Fixed
10:2021-09-01

Affected versions

Other
10

Ecosystem specific 

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 16825.0,
                "function_hash": "123133853663000408978406452059135005748"
            },
            "id": "ASB-A-182152757-330580d9",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/external/libavc/+/a88e0683a420d7ee9aa4b6f41f94cb8dc0c5e040",
            "target": {
                "function": "ih264d_parse_decode_slice",
                "file": "decoder/ih264d_parse_slice.c"
            }
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "119945963440541538035784979728125816983",
                    "255224296024612985390484146779658378250",
                    "160388031835788071854010997219348523817",
                    "60516511112450173609462386312560336575",
                    "63902476905212605000620325702263251555",
                    "275929453535975115840424296357929607942",
                    "254429859499802782634724683805821366471",
                    "154945095007020849168726000600056374878",
                    "107239300484544486887623642710182168076",
                    "328091311931346925764590564347209009119",
                    "9674616957337096999271654405362951351",
                    "329916013161882525599151527348539263851"
                ]
            },
            "id": "ASB-A-182152757-4952bf04",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/external/libavc/+/a88e0683a420d7ee9aa4b6f41f94cb8dc0c5e040",
            "target": {
                "file": "decoder/ih264d_parse_slice.c"
            }
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/external/libavc/+/a88e0683a420d7ee9aa4b6f41f94cb8dc0c5e040"
    ],
    "types": [
        "ID"
    ],
    "spl": "2021-09-01",
    "severity": "High"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-182152757.json"

Android / platform/external/libavc

Package

Name
platform/external/libavc

Affected ranges

Type
ECOSYSTEM
Events
Introduced
11:0
Fixed
11:2021-09-01

Affected versions

Other
11

Ecosystem specific 

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 16825.0,
                "function_hash": "123133853663000408978406452059135005748"
            },
            "id": "ASB-A-182152757-acac14b4",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/external/libavc/+/a88e0683a420d7ee9aa4b6f41f94cb8dc0c5e040",
            "target": {
                "function": "ih264d_parse_decode_slice",
                "file": "decoder/ih264d_parse_slice.c"
            }
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "119945963440541538035784979728125816983",
                    "255224296024612985390484146779658378250",
                    "160388031835788071854010997219348523817",
                    "60516511112450173609462386312560336575",
                    "63902476905212605000620325702263251555",
                    "275929453535975115840424296357929607942",
                    "254429859499802782634724683805821366471",
                    "154945095007020849168726000600056374878",
                    "107239300484544486887623642710182168076",
                    "328091311931346925764590564347209009119",
                    "9674616957337096999271654405362951351",
                    "329916013161882525599151527348539263851"
                ]
            },
            "id": "ASB-A-182152757-de88befd",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/external/libavc/+/a88e0683a420d7ee9aa4b6f41f94cb8dc0c5e040",
            "target": {
                "file": "decoder/ih264d_parse_slice.c"
            }
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/external/libavc/+/a88e0683a420d7ee9aa4b6f41f94cb8dc0c5e040"
    ],
    "types": [
        "ID"
    ],
    "spl": "2021-09-01",
    "severity": "High"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-182152757.json"