CVE-2017-13194

Priority
Description
A vulnerability in the Android media framework (libvpx) related to odd
frame width. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1.
Android ID: A-64710201.
Notes
 leosilva> code in trusty is quite different needs to be tested with the POC
 leosilva> if possible.
Package
Upstream:released (1.3.0-3+deb8u1, 1.7.0-2)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Trusty/esm:needed
Ubuntu 16.04 LTS (Xenial Xerus):needed
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (1.7.0-3)
Ubuntu 18.10 (Cosmic Cuttlefish):not-affected (1.7.0-3)
Ubuntu 19.04 (Disco Dingo):not-affected (1.7.0-3)
Ubuntu 19.10 (Eoan):not-affected (1.7.0-3)
Patches:
Upstream:https://github.com/webmproject/libvpx/commit/5a40c8fde11bf82cccb5bd2f57c46ab5e6262cbf
Upstream:https://github.com/webmproject/libvpx/commit/33c598990bc771d7367fe6282bd445e92cd856a6
More Information

Updated: 2019-04-26 14:19:44 UTC (commit 30899e40836d26e1bb5f0b072d31fd87b6cf3bd4)