In libvpx, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112001302
References
Link | Resource |
---|---|
http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00049.html | Third Party Advisory |
http://www.openwall.com/lists/oss-security/2019/10/25/17 | Mailing List |
http://www.openwall.com/lists/oss-security/2019/10/27/1 | Mailing List |
http://www.openwall.com/lists/oss-security/2019/11/07/1 | Mailing List |
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DQSTK442ATWJOR4TU3MR6C3N5A6NDFFN/ | |
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U2IIA3RSYABBUCFIHXIRVUT5CTJVWWZ6/ | |
https://seclists.org/bugtraq/2019/Nov/43 | Mailing List Third Party Advisory |
https://security.gentoo.org/glsa/202003-59 | Third Party Advisory |
https://source.android.com/security/bulletin/android-10 | Vendor Advisory |
https://usn.ubuntu.com/4199-1/ | Third Party Advisory |
https://www.debian.org/security/2019/dsa-4578 | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Configuration 5 (hide)
|
History
14 Oct 2022, 01:53
Type | Values Removed | Values Added |
---|---|---|
References | (MLIST) http://www.openwall.com/lists/oss-security/2019/10/25/17 - Mailing List | |
References | (MLIST) http://www.openwall.com/lists/oss-security/2019/10/27/1 - Mailing List | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U2IIA3RSYABBUCFIHXIRVUT5CTJVWWZ6/ - Mailing List, Third Party Advisory | |
References | (MLIST) http://www.openwall.com/lists/oss-security/2019/11/07/1 - Mailing List | |
References | (GENTOO) https://security.gentoo.org/glsa/202003-59 - Third Party Advisory | |
References | (DEBIAN) https://www.debian.org/security/2019/dsa-4578 - Third Party Advisory | |
References | (UBUNTU) https://usn.ubuntu.com/4199-1/ - Third Party Advisory | |
References | (BUGTRAQ) https://seclists.org/bugtraq/2019/Nov/43 - Mailing List, Third Party Advisory | |
References | (SUSE) http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00049.html - Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DQSTK442ATWJOR4TU3MR6C3N5A6NDFFN/ - Mailing List, Third Party Advisory | |
CPE | cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:* cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:* cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:* |
Information
Published : 2019-09-27 19:15
Updated : 2024-02-04 20:39
NVD link : CVE-2019-9325
Mitre link : CVE-2019-9325
CVE.ORG link : CVE-2019-9325
JSON object : View
Products Affected
debian
- debian_linux
canonical
- ubuntu_linux
opensuse
- leap
- android
fedoraproject
- fedora
CWE
CWE-125
Out-of-bounds Read