PUB-A-172908358
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/PUB-A-172908358.json
- JSON Data
- https://api.osv.dev/v1/vulns/PUB-A-172908358
- Aliases
-
- A-172908358
- CVE-2021-0563
- Published
- 2021-06-01T00:00:00Z
- Modified
- 2024-11-06T12:16:03.231308Z
- Summary
- [none]
- Details
-
In ih264efmtconv422ito420sp of ih264efmt_conv.c, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android / platform/external/libavc
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"length": 15750.0,
"function_hash": "67043661238450019411529786566462118406"
},
"id": "PUB-A-172908358-2856cd57",
"source": "https://android.googlesource.com/platform/external/libavc/+/a073696092f26e5060af792b917738602d85686d",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "encoder/ih264e_api.c",
"function": "ih264e_init_mem_rec"
},
"signature_type": "Function"
},
{
"digest": {
"length": 48003.0,
"function_hash": "236838564394696900995715808026921601155"
},
"id": "PUB-A-172908358-779bbd0b",
"source": "https://android.googlesource.com/platform/external/libavc/+/a073696092f26e5060af792b917738602d85686d",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "encoder/ih264e_api.c",
"function": "api_check_struct_sanity"
},
"signature_type": "Function"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"11436748622741555211511562974437029475",
"194746552236668490386555839823404094242",
"271305084253908989190787299743263654575",
"42369166078671828517637123268586505691",
"166562214494024085444415830556737442277",
"205795958895406637978446509005089323344",
"270103876551008007276917463242316682025",
"166590035485662664390855087328233313364",
"89609602042366023029951434708000026388",
"305259709436081082713861186704397131955",
"327685327097549791698800440926496033800",
"245743310708284359258330936700978576071",
"102939820916256137337460452902258441929",
"169429727067567893651861743331070423075",
"43761950224535564640297412754089217413"
]
},
"id": "PUB-A-172908358-8e3eb26b",
"source": "https://android.googlesource.com/platform/external/libavc/+/a073696092f26e5060af792b917738602d85686d",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "encoder/ih264e_api.c"
},
"signature_type": "Line"
}
],
"fixes": [
"https://android.googlesource.com/platform/external/libavc/+/a073696092f26e5060af792b917738602d85686d"
],
"spl": "2021-06-01",
"severity": "Moderate",
"types": [
"ID"
]
}
Android / platform/frameworks/av
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"336636637964304245453880552070819168094",
"286963644758611910438579662897006797633",
"317823222726588482816670730790310589570",
"263355126223807820580268602512026633719",
"190799439872835123293476631510015570551",
"277533348769438318696019338753518259914",
"99531519431196115947486263142413648385",
"135785348826432987630090870206184261848",
"81047690096263532857802777128652756601",
"185911114078693463246023048750851155109",
"213044325801520692774314796550440066821",
"83174986760686413071624659326766061139",
"132375665885298955356826781041954764437",
"329317992006545803284932332248957628134",
"22759541809916156142191647769864743515",
"40614379522369386504878861115012744745"
]
},
"id": "PUB-A-172908358-f5edd3c0",
"source": "https://android.googlesource.com/platform/frameworks/av/+/af7ae3bf72c9cac13616959247dd3c51b2bc08d4",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "media/codec2/components/avc/C2SoftAvcEnc.cpp"
},
"signature_type": "Line"
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/av/+/af7ae3bf72c9cac13616959247dd3c51b2bc08d4"
],
"spl": "2021-06-01",
"severity": "Moderate",
"types": [
"ID"
]
}