ASB-A-388480622
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-388480622.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-388480622
- Aliases
-
- A-388480622
- CVE-2025-26416
- Published
- 2025-04-01T00:00:00Z
- Modified
- 2026-04-17T15:55:28.020024Z
- Summary
- [none]
- Details
-
In initializeSwizzler of SkBmpStandardCodec.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android / platform/external/skia
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"length": 549.0,
"function_hash": "177561997836789650145611253905413223099"
},
"id": "ASB-A-388480622-095f111b",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/external/skia/+/bfae9080f53da925d53c24537e901a5015aa9311",
"target": {
"function": "SkBmpStandardCodec::initializeSwizzler",
"file": "src/codec/SkBmpStandardCodec.cpp"
}
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"286849986559465055291989942090731074382",
"52764690829941560468026037836866162379",
"113349593332524221481260156528832118053",
"78828537805330186747886145317844987192"
]
},
"id": "ASB-A-388480622-dba6be3b",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/external/skia/+/bfae9080f53da925d53c24537e901a5015aa9311",
"target": {
"file": "src/codec/SkBmpStandardCodec.cpp"
}
}
],
"fixes": [
"https://android.googlesource.com/platform/external/skia/+/bfae9080f53da925d53c24537e901a5015aa9311"
],
"types": [
"EoP"
],
"spl": "2025-04-01",
"severity": "Critical"
}
Android / platform/external/skia
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"286849986559465055291989942090731074382",
"52764690829941560468026037836866162379",
"113349593332524221481260156528832118053",
"78828537805330186747886145317844987192"
]
},
"id": "ASB-A-388480622-4f2393fe",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/external/skia/+/bfae9080f53da925d53c24537e901a5015aa9311",
"target": {
"file": "src/codec/SkBmpStandardCodec.cpp"
}
},
{
"digest": {
"length": 549.0,
"function_hash": "177561997836789650145611253905413223099"
},
"id": "ASB-A-388480622-bc9521d9",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/external/skia/+/bfae9080f53da925d53c24537e901a5015aa9311",
"target": {
"function": "SkBmpStandardCodec::initializeSwizzler",
"file": "src/codec/SkBmpStandardCodec.cpp"
}
}
],
"fixes": [
"https://android.googlesource.com/platform/external/skia/+/bfae9080f53da925d53c24537e901a5015aa9311"
],
"types": [
"EoP"
],
"spl": "2025-04-01",
"severity": "Critical"
}
Android / platform/external/skia
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"length": 549.0,
"function_hash": "177561997836789650145611253905413223099"
},
"id": "ASB-A-388480622-5379d2f2",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/external/skia/+/d44bab0332f621d653fc398243e287f290fc0c24",
"target": {
"function": "SkBmpStandardCodec::initializeSwizzler",
"file": "src/codec/SkBmpStandardCodec.cpp"
}
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"286849986559465055291989942090731074382",
"52764690829941560468026037836866162379",
"113349593332524221481260156528832118053",
"78828537805330186747886145317844987192"
]
},
"id": "ASB-A-388480622-f8972a36",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/external/skia/+/d44bab0332f621d653fc398243e287f290fc0c24",
"target": {
"file": "src/codec/SkBmpStandardCodec.cpp"
}
}
],
"fixes": [
"https://android.googlesource.com/platform/external/skia/+/d44bab0332f621d653fc398243e287f290fc0c24"
],
"types": [
"EoP"
],
"spl": "2025-04-01",
"severity": "Critical"
}
Android / platform/external/skia
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"286849986559465055291989942090731074382",
"52764690829941560468026037836866162379",
"113349593332524221481260156528832118053",
"78828537805330186747886145317844987192"
]
},
"id": "ASB-A-388480622-b1904a95",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/external/skia/+/c58deb210e62cf57de91b0eb8844b782fc774135",
"target": {
"file": "src/codec/SkBmpStandardCodec.cpp"
}
},
{
"digest": {
"length": 549.0,
"function_hash": "177561997836789650145611253905413223099"
},
"id": "ASB-A-388480622-ba5dc137",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/external/skia/+/c58deb210e62cf57de91b0eb8844b782fc774135",
"target": {
"function": "SkBmpStandardCodec::initializeSwizzler",
"file": "src/codec/SkBmpStandardCodec.cpp"
}
}
],
"fixes": [
"https://android.googlesource.com/platform/external/skia/+/c58deb210e62cf57de91b0eb8844b782fc774135"
],
"types": [
"EoP"
],
"spl": "2025-04-01",
"severity": "Critical"
}