CVE-2024-43091Integer Overflow or Wraparound in External Skia

CWE-190Integer Overflow or WraparoundCWE-787Out-of-bounds Write5 documents5 sources
Severity
9.8CRITICALNVD
EPSS
4.7%
top 10.60%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Platform External SkiaGoogle Android
Timeline
PublishedNov 13

Description

In filterMask of SkEmbossMaskFilter.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages3 packages

Androidplatform/external_skia15-next:015-next:2024-11-01+5
CVEListV5google/android5 versions+4
NVDgoogle/android5 versions+4

Patches

Patch: android.googlesource.comPatch: source.android.com

🔴Vulnerability Details

3
CVEList
CVE-2024-43091: In filterMask of SkEmbossMaskFilter2024-11-13
GHSA
GHSA-p3xf-gp9j-6r3v: In filterMask of SkEmbossMaskFilter2024-11-13
OSV
CVE-2024-43091: In filterMask of SkEmbossMaskFilter2024-11-01

📋Vendor Advisories

1
Android
CVE-2024-43091: Android Security Bulletin 2024-11-01 CVE: CVE-2024-43091 Severity: HIGH Type: RCE Affected AOSP versions: 12, 12L, 13, 14, 15 References: A-3446205772024-11-01
CVE-2024-43091 — Integer Overflow or Wraparound | cvebase