In ih264dparsedecodeslice of ih264dparse_slice.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.
{ "vanir_signatures": [ { "digest": { "length": 16920.0, "function_hash": "317260528575866506749585279787370317279" }, "id": "ASB-A-205702093-08e8ee07", "source": "https://android.googlesource.com/platform/external/libavc/+/dc110841d6a3fb2f9c9f1af04b3b71da40fbd392", "deprecated": false, "signature_version": "v1", "target": { "file": "decoder/ih264d_parse_slice.c", "function": "ih264d_parse_decode_slice" }, "signature_type": "Function" }, { "digest": { "threshold": 0.9, "line_hashes": [ "15245093318300955089985553898204632580", "308835353278844952969673531834672375556", "95251955029296330080774521352240845011", "99650299326766410453481779919126340281", "267704555538418719670371499903093565584", "123171027937763603460906420960114560624", "241684536061738258922111159970888426421", "157551338934432380582111433535900656235", "167833780012589546135021303253715931925", "43449764711965098861295696277136669097", "117091896254334038032080024831779276181", "9262250090995193725041188886001094425", "114084723533055295666875146946441971109", "329916013161882525599151527348539263851", "217832490124622463288395468880593258219", "144423301104916578203051904392705524255", "171060306154700556947884001024948146443", "232837683669595986137331137289761828548" ] }, "id": "ASB-A-205702093-6c5960c2", "source": "https://android.googlesource.com/platform/external/libavc/+/dc110841d6a3fb2f9c9f1af04b3b71da40fbd392", "deprecated": false, "signature_version": "v1", "target": { "file": "decoder/ih264d_parse_slice.c" }, "signature_type": "Line" } ], "fixes": [ "https://android.googlesource.com/platform/external/libavc/+/dc110841d6a3fb2f9c9f1af04b3b71da40fbd392" ], "spl": "2022-03-01", "severity": "High", "types": [ "ID" ] }
{ "vanir_signatures": [ { "digest": { "length": 16920.0, "function_hash": "317260528575866506749585279787370317279" }, "id": "ASB-A-205702093-4a322ba5", "source": "https://android.googlesource.com/platform/external/libavc/+/dc110841d6a3fb2f9c9f1af04b3b71da40fbd392", "deprecated": false, "signature_version": "v1", "target": { "file": "decoder/ih264d_parse_slice.c", "function": "ih264d_parse_decode_slice" }, "signature_type": "Function" }, { "digest": { "threshold": 0.9, "line_hashes": [ "15245093318300955089985553898204632580", "308835353278844952969673531834672375556", "95251955029296330080774521352240845011", "99650299326766410453481779919126340281", "267704555538418719670371499903093565584", "123171027937763603460906420960114560624", "241684536061738258922111159970888426421", "157551338934432380582111433535900656235", "167833780012589546135021303253715931925", "43449764711965098861295696277136669097", "117091896254334038032080024831779276181", "9262250090995193725041188886001094425", "114084723533055295666875146946441971109", "329916013161882525599151527348539263851", "217832490124622463288395468880593258219", "144423301104916578203051904392705524255", "171060306154700556947884001024948146443", "232837683669595986137331137289761828548" ] }, "id": "ASB-A-205702093-c257db62", "source": "https://android.googlesource.com/platform/external/libavc/+/dc110841d6a3fb2f9c9f1af04b3b71da40fbd392", "deprecated": false, "signature_version": "v1", "target": { "file": "decoder/ih264d_parse_slice.c" }, "signature_type": "Line" } ], "fixes": [ "https://android.googlesource.com/platform/external/libavc/+/dc110841d6a3fb2f9c9f1af04b3b71da40fbd392" ], "spl": "2022-03-01", "severity": "High", "types": [ "ID" ] }
{ "vanir_signatures": [ { "digest": { "length": 16920.0, "function_hash": "317260528575866506749585279787370317279" }, "id": "ASB-A-205702093-7aa15fea", "source": "https://android.googlesource.com/platform/external/libavc/+/dc110841d6a3fb2f9c9f1af04b3b71da40fbd392", "deprecated": false, "signature_version": "v1", "target": { "file": "decoder/ih264d_parse_slice.c", "function": "ih264d_parse_decode_slice" }, "signature_type": "Function" }, { "digest": { "threshold": 0.9, "line_hashes": [ "15245093318300955089985553898204632580", "308835353278844952969673531834672375556", "95251955029296330080774521352240845011", "99650299326766410453481779919126340281", "267704555538418719670371499903093565584", "123171027937763603460906420960114560624", "241684536061738258922111159970888426421", "157551338934432380582111433535900656235", "167833780012589546135021303253715931925", "43449764711965098861295696277136669097", "117091896254334038032080024831779276181", "9262250090995193725041188886001094425", "114084723533055295666875146946441971109", "329916013161882525599151527348539263851", "217832490124622463288395468880593258219", "144423301104916578203051904392705524255", "171060306154700556947884001024948146443", "232837683669595986137331137289761828548" ] }, "id": "ASB-A-205702093-eb10d9cb", "source": "https://android.googlesource.com/platform/external/libavc/+/dc110841d6a3fb2f9c9f1af04b3b71da40fbd392", "deprecated": false, "signature_version": "v1", "target": { "file": "decoder/ih264d_parse_slice.c" }, "signature_type": "Line" } ], "fixes": [ "https://android.googlesource.com/platform/external/libavc/+/dc110841d6a3fb2f9c9f1af04b3b71da40fbd392" ], "spl": "2022-03-01", "severity": "High", "types": [ "ID" ] }
{ "vanir_signatures": [ { "digest": { "length": 16920.0, "function_hash": "317260528575866506749585279787370317279" }, "id": "ASB-A-205702093-260d4e0d", "source": "https://android.googlesource.com/platform/external/libavc/+/dc110841d6a3fb2f9c9f1af04b3b71da40fbd392", "deprecated": false, "signature_version": "v1", "target": { "file": "decoder/ih264d_parse_slice.c", "function": "ih264d_parse_decode_slice" }, "signature_type": "Function" }, { "digest": { "threshold": 0.9, "line_hashes": [ "15245093318300955089985553898204632580", "308835353278844952969673531834672375556", "95251955029296330080774521352240845011", "99650299326766410453481779919126340281", "267704555538418719670371499903093565584", "123171027937763603460906420960114560624", "241684536061738258922111159970888426421", "157551338934432380582111433535900656235", "167833780012589546135021303253715931925", "43449764711965098861295696277136669097", "117091896254334038032080024831779276181", "9262250090995193725041188886001094425", "114084723533055295666875146946441971109", "329916013161882525599151527348539263851", "217832490124622463288395468880593258219", "144423301104916578203051904392705524255", "171060306154700556947884001024948146443", "232837683669595986137331137289761828548" ] }, "id": "ASB-A-205702093-4b0e4542", "source": "https://android.googlesource.com/platform/external/libavc/+/dc110841d6a3fb2f9c9f1af04b3b71da40fbd392", "deprecated": false, "signature_version": "v1", "target": { "file": "decoder/ih264d_parse_slice.c" }, "signature_type": "Line" } ], "fixes": [ "https://android.googlesource.com/platform/external/libavc/+/dc110841d6a3fb2f9c9f1af04b3b71da40fbd392" ], "spl": "2022-03-01", "severity": "High", "types": [ "ID" ] }