ASB-A-427113482
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-427113482.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-427113482
- Aliases
-
- A-427113482
- CVE-2025-48592
- Published
- 2025-12-01T00:00:00Z
- Modified
- 2026-04-02T16:07:38.132481Z
- Summary
- [none]
- Details
-
In initDecoder of C2SoftDav1dDec.cpp, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android / platform/frameworks/av
Package
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/frameworks/av/+/ba571df05a6e65545dbda4c9988c2bc23aae8f16"
],
"vanir_signatures": [
{
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/av/+/ba571df05a6e65545dbda4c9988c2bc23aae8f16",
"signature_type": "Function",
"deprecated": false,
"digest": {
"function_hash": "25058861448546541125187266146201091443",
"length": 956.0
},
"id": "ASB-A-427113482-8b02cc06",
"target": {
"function": "C2SoftDav1dDec::initDecoder",
"file": "media/codec2/components/dav1d/C2SoftDav1dDec.cpp"
}
},
{
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/av/+/ba571df05a6e65545dbda4c9988c2bc23aae8f16",
"signature_type": "Line",
"deprecated": false,
"digest": {
"threshold": 0.9,
"line_hashes": [
"194601266704142360724374613269733820402",
"153098406477915171747020160464923082297",
"246323934513271302578435165879924546964",
"139973620746190050113620590758254972576"
]
},
"id": "ASB-A-427113482-e7c61139",
"target": {
"file": "media/codec2/components/dav1d/C2SoftDav1dDec.cpp"
}
}
],
"spl": "2025-12-01",
"severity": "High",
"types": [
"ID"
]
}
Android / platform/frameworks/av
Package
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/frameworks/av/+/25c66cbc720dd6c28aa1abe32eecda1ea4878328"
],
"vanir_signatures": [
{
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/av/+/25c66cbc720dd6c28aa1abe32eecda1ea4878328",
"signature_type": "Line",
"deprecated": false,
"digest": {
"threshold": 0.9,
"line_hashes": [
"194601266704142360724374613269733820402",
"153098406477915171747020160464923082297",
"246323934513271302578435165879924546964",
"139973620746190050113620590758254972576"
]
},
"id": "ASB-A-427113482-5675d6e9",
"target": {
"file": "media/codec2/components/dav1d/C2SoftDav1dDec.cpp"
}
},
{
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/av/+/25c66cbc720dd6c28aa1abe32eecda1ea4878328",
"signature_type": "Function",
"deprecated": false,
"digest": {
"function_hash": "25058861448546541125187266146201091443",
"length": 956.0
},
"id": "ASB-A-427113482-752f63b3",
"target": {
"function": "C2SoftDav1dDec::initDecoder",
"file": "media/codec2/components/dav1d/C2SoftDav1dDec.cpp"
}
}
],
"spl": "2025-12-01",
"severity": "High",
"types": [
"ID"
]
}
Android / platform/frameworks/av
Package
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/frameworks/av/+/ea4bc6759153ef0ceadc7a802bad4b50d8012ba3"
],
"vanir_signatures": [
{
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/av/+/ea4bc6759153ef0ceadc7a802bad4b50d8012ba3",
"signature_type": "Line",
"deprecated": false,
"digest": {
"threshold": 0.9,
"line_hashes": [
"194601266704142360724374613269733820402",
"153098406477915171747020160464923082297",
"246323934513271302578435165879924546964",
"139973620746190050113620590758254972576"
]
},
"id": "ASB-A-427113482-134fbe9f",
"target": {
"file": "media/codec2/components/dav1d/C2SoftDav1dDec.cpp"
}
},
{
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/av/+/ea4bc6759153ef0ceadc7a802bad4b50d8012ba3",
"signature_type": "Function",
"deprecated": false,
"digest": {
"function_hash": "25058861448546541125187266146201091443",
"length": 956.0
},
"id": "ASB-A-427113482-a82a6f6b",
"target": {
"function": "C2SoftDav1dDec::initDecoder",
"file": "media/codec2/components/dav1d/C2SoftDav1dDec.cpp"
}
}
],
"spl": "2025-12-01",
"severity": "High",
"types": [
"ID"
]
}