PUB-A-204704614

See a problem?

Import Source

https://storage.googleapis.com/android-osv/PUB-A-204704614.json

JSON Data

https://api.osv.dev/v1/vulns/PUB-A-204704614

Aliases

A-204704614
CVE-2022-20202

Published

2022-06-01T00:00:00Z

Modified

2024-11-06T12:16:03.231308Z

Summary

[none]

Details

In ih264resitransquant4x4sse42 of ih264resitransquant_sse42.c, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.

References

https://source.android.com/security/bulletin/2022-06-01

Affected packages

Android / platform/external/libavc

Package

Name: platform/external/libavc

Affected ranges

Type: ECOSYSTEM
Events: Introduced

12L-next:0

Fixed

12L-next:2022-06-01

Affected versions

Other

12L-next

Ecosystem specific

{
    "vanir_signatures": [
        {
            "match_only_versions": [
                "12L-next"
            ],
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "44622745914496267014874877791296844245",
                    "313893970382185565386613199094475445908",
                    "257814646327669844995465491036676469478",
                    "6793148515598271090869928456381078677",
                    "182282865985414473214686996667217353797",
                    "249950852661262347254393584565518412516",
                    "76346859393990299324291514306573837086",
                    "199610150649414966720365140681330731351",
                    "274438515851141155450210247739734634088",
                    "161024641183286775282120190510973194884",
                    "319404753035915339849066379499817218151"
                ]
            },
            "id": "PUB-A-204704614-8b09d3a5",
            "source": "https://android.googlesource.com/platform/external/libavc/+/c79d0f5092ccc5add8a34235c354f0aab7de5360",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "common/x86/ih264_resi_trans_quant_sse42.c"
            },
            "signature_type": "Line"
        },
        {
            "match_only_versions": [
                "12L-next"
            ],
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "213833645873169669765122902573502420698",
                    "309724607285731642094842368964131030934",
                    "150504983043032572218134993537948161653",
                    "199610150649414966720365140681330731351",
                    "274563267857326340263529073532652070979",
                    "308583840993119412788275443081206660709",
                    "194191989803957241180165222696423081960"
                ]
            },
            "id": "PUB-A-204704614-96144fde",
            "source": "https://android.googlesource.com/platform/external/libavc/+/c79d0f5092ccc5add8a34235c354f0aab7de5360",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "common/x86/ih264_iquant_itrans_recon_sse42.c"
            },
            "signature_type": "Line"
        },
        {
            "match_only_versions": [
                "12L-next"
            ],
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "332254097385407575323384742360779584334",
                    "33136687610234724484368590363632112158",
                    "190821703004177312617854120951885567957"
                ]
            },
            "id": "PUB-A-204704614-c4ca4a7b",
            "source": "https://android.googlesource.com/platform/external/libavc/+/c79d0f5092ccc5add8a34235c354f0aab7de5360",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "common/x86/ih264_platform_macros.h"
            },
            "signature_type": "Line"
        },
        {
            "match_only_versions": [
                "12L-next"
            ],
            "digest": {
                "length": 4349.0,
                "function_hash": "193550361473805482818313141826751135633"
            },
            "id": "PUB-A-204704614-c54c6597",
            "source": "https://android.googlesource.com/platform/external/libavc/+/c79d0f5092ccc5add8a34235c354f0aab7de5360",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "common/x86/ih264_resi_trans_quant_sse42.c",
                "function": "ih264_resi_trans_quant_4x4_sse42"
            },
            "signature_type": "Function"
        },
        {
            "match_only_versions": [
                "12L-next"
            ],
            "digest": {
                "length": 4173.0,
                "function_hash": "302248289238786914772650539557645948751"
            },
            "id": "PUB-A-204704614-ea3e056d",
            "source": "https://android.googlesource.com/platform/external/libavc/+/c79d0f5092ccc5add8a34235c354f0aab7de5360",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "common/x86/ih264_iquant_itrans_recon_sse42.c",
                "function": "ih264_iquant_itrans_recon_4x4_sse42"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/external/libavc/+/c79d0f5092ccc5add8a34235c354f0aab7de5360"
    ],
    "spl": "2022-06-01",
    "severity": "Moderate",
    "types": [
        "ID"
    ]
}