Google Inc Android vulnerabilities

CVE-2017-13219 [HIGH] CVE-2017-13219: A denial of service vulnerability in the Upstream kernel synaptics touchscreen controller. Product: A denial of service vulnerability in the Upstream kernel synaptics touchscreen controller. Product: Android. Versions: Android kernel. Android ID: A-62800865.

CVE-2017-13216 [HIGH] CWE-787 CVE-2017-13216: In ashmem_ioctl of ashmem.c, there is an out-of-bounds write due to insufficient locking when access In ashmem_ioctl of ashmem.c, there is an out-of-bounds write due to insufficient locking when accessing asma. This could lead to a local elevation of privilege enabling code execution as a privileged process with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Andr

CVE-2017-0869 [HIGH] CWE-190 CVE-2017-0869: NVIDIA driver contains an integer overflow vulnerability which could cause a use after free and poss NVIDIA driver contains an integer overflow vulnerability which could cause a use after free and possibly lead to an elevation of privilege enabling code execution as a privileged process. This issue is rated as high. Version: N/A. Android ID: A-37776156. References: N-CVE-2017-0869.

CVE-2017-13214 [HIGH] CWE-20 CVE-2017-13214: In the hardware HEVC decoder, some media files could cause a page fault. This could lead to a remote In the hardware HEVC decoder, some media files could cause a page fault. This could lead to a remote denial of service of a critical system process with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID: A-38495900.

CVE-2017-13217 [HIGH] CWE-787 CVE-2017-13217: In DisplayFtmItem in the bootloader, there is an out-of-bounds write due to reading a string without In DisplayFtmItem in the bootloader, there is an out-of-bounds write due to reading a string without verifying that it's null-terminated. This could lead to a secure boot bypass and a local elevation of privilege enabling code execution as a privileged process with no additional execution privileges needed. User interaction is not needed for exploitat

CVE-2017-13196 [HIGH] CWE-772 CVE-2017-13196: In several places in ihevcd_decode.c, a dead loop could occur due to incomplete frames which could l In several places in ihevcd_decode.c, a dead loop could occur due to incomplete frames which could lead to memory leaks. This could lead to a remote denial of service of a critical system process with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7

CVE-2017-13189 [HIGH] CWE-770 CVE-2017-13189: A vulnerability in the Android media framework (libavc) related to handling dec_hdl memory allocatio A vulnerability in the Android media framework (libavc) related to handling dec_hdl memory allocation failures. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-68300072.

CVE-2017-13215 [HIGH] CVE-2017-13215: A elevation of privilege vulnerability in the Upstream kernel skcipher. Product: Android. Versions: A elevation of privilege vulnerability in the Upstream kernel skcipher. Product: Android. Versions: Android kernel. Android ID: A-64386293. References: Upstream kernel.

CVE-2017-0855 [HIGH] CWE-772 CVE-2017-0855: In MPEG4Extractor.cpp, there are several places where functions return early without cleaning up int In MPEG4Extractor.cpp, there are several places where functions return early without cleaning up internal buffers which could lead to memory leaks. This could lead to remote denial of service of a critical system process with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 5.1.1, 6.

CVE-2017-13194 [HIGH] CWE-20 CVE-2017-13194: A vulnerability in the Android media framework (libvpx) related to odd frame width. Product: Android A vulnerability in the Android media framework (libvpx) related to odd frame width. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-64710201.

CVE-2017-13200 [HIGH] CWE-200 CVE-2017-13200: An information disclosure vulnerability in the Android media framework (av) related to id3 unsynchro An information disclosure vulnerability in the Android media framework (av) related to id3 unsynchronization. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-63100526.

CVE-2017-13181 [HIGH] CWE-415 CVE-2017-13181: In the doGetThumb and getThumbnail functions of MtpServer, there is a possible double free due to no In the doGetThumb and getThumbnail functions of MtpServer, there is a possible double free due to not NULLing out a freed pointer. This could lead to an local elevation of privilege enabling code execution as a privileged process with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions

CVE-2017-13209 [HIGH] CWE-862 CVE-2017-13209: In the ServiceManager::add function in the hardware service manager, there is an insecure permission In the ServiceManager::add function in the hardware service manager, there is an insecure permissions check based on the PID of the caller which could allow an application or service to replace a HAL service with its own service. This could lead to a local elevation of privilege enabling code execution as a privileged process with no additional execut

CVE-2017-13191 [HIGH] CWE-835 CVE-2017-13191: In the ihevcd_decode function of ihevcd_decode.c, there is an infinite loop due to an incomplete fra In the ihevcd_decode function of ihevcd_decode.c, there is an infinite loop due to an incomplete frame error. This could lead to a remote denial of service of a critical system process with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0,

CVE-2017-13180 [HIGH] CWE-416 CVE-2017-13180: In the onQueueFilled function of SoftAVCDec, there is a possible out-of-bounds write due to a use af In the onQueueFilled function of SoftAVCDec, there is a possible out-of-bounds write due to a use after free if a bad header causes the decoder to get caught in a loop while another thread frees the memory it's accessing. This could lead to a local elevation of privilege enabling code execution as a privileged process with no additional execution priv

CVE-2017-13186 [HIGH] CWE-20 CVE-2017-13186: A vulnerability in the Android media framework (libavc) related to incorrect use of mmco parameters. A vulnerability in the Android media framework (libavc) related to incorrect use of mmco parameters. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-65735716.

CVE-2017-13207 [HIGH] CWE-200 CVE-2017-13207: An information disclosure vulnerability in the Android media framework (stagefright mpeg4writer). Pr An information disclosure vulnerability in the Android media framework (stagefright mpeg4writer). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-37564426.

CVE-2017-13183 [HIGH] CWE-362 CVE-2017-13183: In the OMXNodeInstance::useBuffer and IOMX::freeBuffer functions, there is a possible use after free In the OMXNodeInstance::useBuffer and IOMX::freeBuffer functions, there is a possible use after free due to a race condition if the user frees the buffer while it's being used in another thread. This could lead to a local elevation of privilege enabling code execution as a privileged process with no additional execution privileges needed. User interac

CVE-2017-13212 [HIGH] CVE-2017-13212: An elevation of privilege vulnerability in the Android system (systemui). Product: Android. Versions An elevation of privilege vulnerability in the Android system (systemui). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62187985.

CVE-2017-13201 [HIGH] CWE-200 CVE-2017-13201: An information disclosure vulnerability in the Android media framework (mediadrm). Product: Android. An information disclosure vulnerability in the Android media framework (mediadrm). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-63982768.