A remote denial of service vulnerability in libvpx in Mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-11-01 could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High due to the possibility of remote denial of service. Android ID: A-30593765.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/94137 | |
https://android.googlesource.com/platform/external/libvpx/+/063be1485e0099bc81ace3a08b0ec9186dcad693 | Issue Tracking Patch |
https://source.android.com/security/bulletin/2016-11-01.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2016-12-13 19:59
Updated : 2024-02-04 19:11
NVD link : CVE-2016-6711
Mitre link : CVE-2016-6711
CVE.ORG link : CVE-2016-6711
JSON object : View
Products Affected
- android
CWE
CWE-20
Improper Input Validation