Vulnerabilities > Google
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-04-04 | CVE-2017-13280 | Out-of-bounds Read vulnerability in Google Android In the FrameSequence_gif::FrameSequence_gif function of libframesequence, there is a out of bounds read due to a missing bounds check. | 7.5 |
| 2018-04-04 | CVE-2017-13279 | Excessive Iteration vulnerability in Google Android In M3UParser::parse of M3UParser.cpp, there is a memory resource exhaustion due to a large loop of pushing items into a vector. | 5.5 |
| 2018-04-04 | CVE-2017-13278 | Use After Free vulnerability in Google Android In MediaPlayerService::Client::notify of MediaPlayerService.cpp, there is a possible use after free. | 7.8 |
| 2018-04-04 | CVE-2017-13277 | Out-of-bounds Write vulnerability in Google Android In ihevcd_fmt_conv of ihevcd_fmt_conv.c, there is a possible out of bounds write due to a missing bounds check. | 7.8 |
| 2018-04-04 | CVE-2017-13276 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android In CProgramConfig_ReadHeightExt of tpdec_asc.cpp, there is a possible stack buffer overflow due to a missing bounds check. | 7.8 |
| 2018-04-04 | CVE-2017-13275 | Out-of-bounds Read vulnerability in Google Android 8.0/8.1 In getVSCoverage of CmapCoverage.cpp, there is a possible out of bounds read due to an incorrect bounds check. | 5.5 |
| 2018-04-04 | CVE-2017-13274 | Origin Validation Error vulnerability in Google Android In the getHost() function of UriTest.java, there is the possibility of incorrect web origin determination. | 9.8 |
| 2018-04-04 | CVE-2017-13267 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android In avrc_pars_vendor_cmd of avrc_pars_tg.cc, there is a possible stack corruption due to a missing bounds check. | 9.8 |
| 2018-04-03 | CVE-2018-5828 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, in function wma_extscan_start_stop_event_handler(), vdev_id comes from the variable event from firmware and is not properly validated potentially leading to a buffer overwrite. | 7.8 |
| 2018-04-03 | CVE-2018-5826 | Use After Free vulnerability in Google Android In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, due to a race condition, a Use After Free condition can occur in the WLAN driver. | 5.9 |