ASB-A-204077881
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-204077881.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-204077881
- Aliases
-
- A-204077881
- CVE-2021-39665
- Published
- 2022-02-01T00:00:00Z
- Modified
- 2025-09-17T14:58:30.319214Z
- Summary
- [none]
- Details
-
In checkSpsUpdated of AAVCAssembler.cpp, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.
- References
Affected packages
Android / platform/frameworks/av
Package
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/frameworks/av/+/cc538ed26803328445d52383f91025b357cda47d"
],
"vanir_signatures": [
{
"source": "https://android.googlesource.com/platform/frameworks/av/+/cc538ed26803328445d52383f91025b357cda47d",
"id": "ASB-A-204077881-15210b66",
"digest": {
"function_hash": "69447002832914259517445382002834504670",
"length": 404.0
},
"signature_type": "Function",
"deprecated": false,
"target": {
"function": "AAVCAssembler::checkSpsUpdated",
"file": "media/libstagefright/rtsp/AAVCAssembler.cpp"
},
"signature_version": "v1"
},
{
"source": "https://android.googlesource.com/platform/frameworks/av/+/cc538ed26803328445d52383f91025b357cda47d",
"id": "ASB-A-204077881-e937756a",
"digest": {
"threshold": 0.9,
"line_hashes": [
"329137829467727028975304135906492061630",
"91765238030631839877653982970183501961",
"78904361420780750818517263595879144632",
"25371881439428296618679050946846425773"
]
},
"signature_type": "Line",
"deprecated": false,
"target": {
"file": "media/libstagefright/rtsp/AAVCAssembler.cpp"
},
"signature_version": "v1"
}
],
"severity": "High",
"spl": "2022-02-01",
"types": [
"ID"
]
}