Vulnerabilities > Google > Android > 5.1.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-01-12 | CVE-2017-13192 | Infinite Loop vulnerability in Google Android In the ihevcd_parse_slice_header function of ihevcd_parse_slice_header.c a slice address of zero after the first slice could result in an infinite loop. | 7.5 |
| 2018-01-12 | CVE-2017-13191 | Infinite Loop vulnerability in Google Android In the ihevcd_decode function of ihevcd_decode.c, there is an infinite loop due to an incomplete frame error. | 7.5 |
| 2018-01-12 | CVE-2017-13188 | Information Exposure vulnerability in Google Android An information disclosure vulnerability in the Android media framework (aac). | 9.1 |
| 2018-01-12 | CVE-2017-13187 | Information Exposure vulnerability in Google Android An information disclosure vulnerability in the Android media framework (libhevc). | 9.1 |
| 2018-01-12 | CVE-2017-13185 | Information Exposure vulnerability in Google Android An information disclosure vulnerability in the Android media framework (libhevc). | 9.1 |
| 2018-01-12 | CVE-2017-13177 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android In several functions of libhevc, NEON registers are not preserved. | 9.8 |
| 2018-01-12 | CVE-2017-13176 | Improper Input Validation vulnerability in Google Android In the parseURL function of URLStreamHandler, there is improper input validation of the host field. | 8.8 |
| 2018-01-12 | CVE-2017-0855 | Missing Release of Resource after Effective Lifetime vulnerability in Google Android In MPEG4Extractor.cpp, there are several places where functions return early without cleaning up internal buffers which could lead to memory leaks. | 7.5 |
| 2018-01-12 | CVE-2017-0846 | Information Exposure vulnerability in Google Android An information disclosure vulnerability in the Android framework (clipboardservice). | 7.5 |
| 2017-12-28 | CVE-2015-7889 | Permission Issues vulnerability in Google Android The SecEmailComposer/EmailComposer application in the Samsung S6 Edge before the October 2015 MR uses weak permissions for the com.samsung.android.email.intent.action.QUICK_REPLY_BACKGROUND service action, which might allow remote attackers with knowledge of the local email address to obtain sensitive information via a crafted application that sends a crafted intent. | 5.5 |