In ih264einitprocctxt of ih264eprocess.c, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
{ "vanir_signatures": [ { "match_only_versions": [ "13" ], "digest": { "length": 8328.0, "function_hash": "53922224608566638613643830146895555373" }, "id": "PUB-A-242379731-0b0d6e9e", "source": "https://android.googlesource.com/platform/external/libavc/+/b483f22a2116159176fd03ed7a568f9e302f203f", "deprecated": false, "signature_version": "v1", "target": { "file": "encoder/ih264e_process.c", "function": "ih264e_init_proc_ctxt" }, "signature_type": "Function" }, { "match_only_versions": [ "13" ], "digest": { "threshold": 0.9, "line_hashes": [ "317348365968802645926055657853517096103", "35923858614510586933455103361981984765", "15555806429024276098886391266202489275", "264738501771433032774869904023852601243", "127520621231200570448469007008970638250", "171648463880174391139856991903617969493", "119226124241005177954213870869569693698", "62569547380120008089584792299127698243", "122080105024326281913783030686036393645", "200553787908619173921698474389571158350", "142602563298303179108384864935028015167", "317539313946853749745098617516069278249" ] }, "id": "PUB-A-242379731-4c31773a", "source": "https://android.googlesource.com/platform/external/libavc/+/b483f22a2116159176fd03ed7a568f9e302f203f", "deprecated": false, "signature_version": "v1", "target": { "file": "encoder/ih264e_process.c" }, "signature_type": "Line" } ], "fixes": [ "https://android.googlesource.com/platform/external/libavc/+/b483f22a2116159176fd03ed7a568f9e302f203f" ], "spl": "2023-03-01", "severity": "Moderate", "types": [ "ID" ] }