CVE-2026-0049
published 2026-04-06CVE-2026-0049: In onHeaderDecoded of LocalImageResolver.java, there is a possible persistent denial of service due to resource exhaustion. This could lead to local denial of…
medium6.2CVSS 3.1
AVLACLPRNUINSUCNINAH
In onHeaderDecoded of LocalImageResolver.java, there is a possible persistent denial of service due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
Affected
17 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| platform | external_dng_sdk | >= 14:0 < 14:2026-04-01 | 14:2026-04-01 |
| platform | external_dng_sdk | >= 15:0 < 15:2026-04-01 | 15:2026-04-01 |
| platform | external_dng_sdk | >= 16-qpr2-next:0 < 16-qpr2-next:2026-04-01 | 16-qpr2-next:2026-04-01 |
| platform | external_dng_sdk | >= 16-qpr2:0 < 16-qpr2:2026-04-01 | 16-qpr2:2026-04-01 |
| platform | external_dng_sdk | >= 16:0 < 16:2026-04-01 | 16:2026-04-01 |
| platform | frameworks_base | >= 14:0 < 14:2026-04-01 | 14:2026-04-01 |
| platform | frameworks_base | >= 15:0 < 15:2026-04-01 | 15:2026-04-01 |
| platform | frameworks_base | >= 16-qpr2-next:0 < 16-qpr2-next:2026-04-01 | 16-qpr2-next:2026-04-01 |
| platform | frameworks_base | >= 16-qpr2:0 < 16-qpr2:2026-04-01 | 16-qpr2:2026-04-01 |
| platform | frameworks_base | >= 16:0 < 16:2026-04-01 | 16:2026-04-01 |