CVE-2017-0855

Priority
Description
In MPEG4Extractor.cpp, there are several places where functions return
early without cleaning up internal buffers which could lead to memory
leaks. This could lead to remote denial of service of a critical system
process with no additional execution privileges needed. User interaction is
not needed for exploitation. Product: Android. Versions: 5.1.1, 6.0, 6.0.1,
7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-64452857.
Notes
Package
Upstream:not-affected
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was not-affected)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected
Ubuntu 18.04 LTS (Bionic Beaver):not-affected
Ubuntu 19.04 (Disco Dingo):not-affected
Ubuntu 19.10 (Eoan Ermine):not-affected
Package
Upstream:not-affected
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was not-affected)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected
Ubuntu 18.04 LTS (Bionic Beaver):not-affected
Ubuntu 19.04 (Disco Dingo):not-affected
Ubuntu 19.10 (Eoan Ermine):not-affected
More Information

Updated: 2019-12-05 21:08:31 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)