Vulnerabilities > Google > Android > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-01-12 | CVE-2017-13193 | Infinite Loop vulnerability in Google Android In ihevcd_decode.c there is a possible infinite loop due to bytes for an sps of unsupported resolution resulting in the same sps being fed in over and over. | 7.5 |
| 2018-01-12 | CVE-2017-13192 | Infinite Loop vulnerability in Google Android In the ihevcd_parse_slice_header function of ihevcd_parse_slice_header.c a slice address of zero after the first slice could result in an infinite loop. | 7.5 |
| 2018-01-12 | CVE-2017-13191 | Infinite Loop vulnerability in Google Android In the ihevcd_decode function of ihevcd_decode.c, there is an infinite loop due to an incomplete frame error. | 7.5 |
| 2018-01-12 | CVE-2017-13190 | Allocation of Resources Without Limits or Throttling vulnerability in Google Android A vulnerability in the Android media framework (libhevc) related to handling ps_codec_obj memory allocation failures. | 7.5 |
| 2018-01-12 | CVE-2017-13189 | Allocation of Resources Without Limits or Throttling vulnerability in Google Android A vulnerability in the Android media framework (libavc) related to handling dec_hdl memory allocation failures. | 7.5 |
| 2018-01-12 | CVE-2017-13186 | Improper Input Validation vulnerability in Google Android A vulnerability in the Android media framework (libavc) related to incorrect use of mmco parameters. | 7.5 |
| 2018-01-12 | CVE-2017-13184 | Use After Free vulnerability in Google Android 8.0/8.1 In the enableVSyncInjections function of SurfaceFlinger, there is a possible use after free of mVSyncInjector. | 7.8 |
| 2018-01-12 | CVE-2017-13183 | Race Condition vulnerability in Google Android 8.1 In the OMXNodeInstance::useBuffer and IOMX::freeBuffer functions, there is a possible use after free due to a race condition if the user frees the buffer while it's being used in another thread. | 7.0 |
| 2018-01-12 | CVE-2017-13182 | Integer Overflow or Wraparound vulnerability in Google Android 8.0/8.1 In the sendFormatChange function of ACodec, there is a possible integer overflow which could lead to an out-of-bounds write. | 7.8 |
| 2018-01-12 | CVE-2017-13181 | Double Free vulnerability in Google Android In the doGetThumb and getThumbnail functions of MtpServer, there is a possible double free due to not NULLing out a freed pointer. | 7.8 |