DEBIAN-CVE-2015-6602

See a problem?
Please try reporting it to the source first.
Source
https://security-tracker.debian.org/tracker/CVE-2015-6602
Import Source
https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2015-6602.json
JSON Data
https://api.osv.dev/v1/vulns/DEBIAN-CVE-2015-6602
Upstream
Published
2015-10-02T02:59:04.960Z
Modified
2025-11-20T10:12:33.591269Z
Summary
[none]
Details

libutils in Android through 5.1.1 LMY48M allows remote attackers to execute arbitrary code via crafted metadata in a (1) MP3 or (2) MP4 file, as demonstrated by an attack against use of libutils by libstagefright in Android 5.x.

References

Affected packages

Debian:11 / android-platform-frameworks-native

Package

Name
android-platform-frameworks-native
Purl
pkg:deb/debian/android-platform-frameworks-native?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1:10.*
1:10.0.0+r36-1
1:10.0.0+r36-1.1~exp1
1:10.0.0+r36-1.1~exp2
1:10.0.0+r36-1.1
1:10.0.0+r36-1.2

Ecosystem specific 

{
    "urgency": "unimportant"
}

Database specific

source 
"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2015-6602.json"

Debian:12 / android-platform-frameworks-native

Package

Name
android-platform-frameworks-native
Purl
pkg:deb/debian/android-platform-frameworks-native?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1:10.*
1:10.0.0+r36-1
1:10.0.0+r36-1.1~exp1
1:10.0.0+r36-1.1~exp2
1:10.0.0+r36-1.1
1:10.0.0+r36-1.2

Ecosystem specific 

{
    "urgency": "unimportant"
}

Database specific

source 
"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2015-6602.json"