CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2015-3845
https://notcve.org/view.php?id=CVE-2015-3845
01 Oct 2015 — The Parcel::appendFrom function in libs/binder/Parcel.cpp in Binder in Android before 5.1.1 LMY48M does not consider parcel boundaries during identification of binder objects in an append operation, which allows attackers to obtain a different application's privileges via a crafted application, aka internal bug 17312693. La función Parcel::appendFrom en libs/binder/Parcel.cpp en Binder en Android en versiones anteriores a 5.1.1 LMY48M no tiene en cuenta los límites del parcel durante la identificación de lo... • https://android.googlesource.com/platform/frameworks/native/+/e68cbc3e9e66df4231e70efa3e9c41abc12aea20 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2015-3832
https://notcve.org/view.php?id=CVE-2015-3832
01 Oct 2015 — Multiple buffer overflows in MPEG4Extractor.cpp in libstagefright in Android before 5.1.1 LMY48I allow remote attackers to execute arbitrary code via invalid size values of NAL units in MP4 data, aka internal bug 19641538. Múltiples desbordamientos de entero en MPEG4Extractor.cpp en libstagefright en Android en versiones anteriores a 5.1.1 LMY48I permiten a atacantes remotos ejecutar código arbitrario a través de valores de tamaño no válidos de unidades NAL en datos MP4, también conocido como error interno ... • https://android.googlesource.com/platform/frameworks/av/+/d48f0f145f8f0f4472bc0af668ac9a8bce44ba9b • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 32%CPEs: 1EXPL: 0CVE-2015-1539
https://notcve.org/view.php?id=CVE-2015-1539
01 Oct 2015 — Multiple integer underflows in the ESDS::parseESDescriptor function in ESDS.cpp in libstagefright in Android before 5.1.1 LMY48I allow remote attackers to execute arbitrary code via crafted ESDS atoms, aka internal bug 20139950, a related issue to CVE-2015-4493. Desbordamientos de entero múltiple en la función ESDS::parseESDescriptor en ESDS.cpp en libstagefright en Android en versiones anteriores a 5.1.1 LMY48I, permite a atacantes remotos ejecutar código arbitrario a través de atoms ESDS manipulados, tamb... • http://www.huawei.com/en/psirt/security-advisories/hw-448928 • CWE-189: Numeric Errors •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2015-3837
https://notcve.org/view.php?id=CVE-2015-3837
01 Oct 2015 — The OpenSSLX509Certificate class in org/conscrypt/OpenSSLX509Certificate.java in Android before 5.1.1 LMY48I improperly includes certain context data during serialization and deserialization, which allows attackers to execute arbitrary code via an application that sends a crafted Intent, aka internal bug 21437603. La clase OpenSSLX509Certificate en org/conscrypt/OpenSSLX509Certificate.java en Android en versiones anteriores a 5.1.1 LMY48I incluye indebidamente determinados datos de contexto durante la seria... • https://github.com/itibs/IsildursBane • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 33%CPEs: 1EXPL: 0CVE-2015-3827
https://notcve.org/view.php?id=CVE-2015-3827
01 Oct 2015 — The MPEG4Extractor::parseChunk function in MPEG4Extractor.cpp in libstagefright in Android before 5.1.1 LMY48I does not validate the relationship between chunk sizes and skip sizes, which allows remote attackers to execute arbitrary code or cause a denial of service (integer underflow and memory corruption) via crafted MPEG-4 covr atoms, aka internal bug 20923261. La función MPEG4Extractor::parseChunk en MPEG4Extractor.cpp en libstagefright en Android en versiones anteriores a 5.1.1 LMY48I no valida la rela... • http://www.huawei.com/en/psirt/security-advisories/hw-448928 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-189: Numeric Errors •
CVSS: 8.5EPSS: 0%CPEs: 1EXPL: 0CVE-2015-1536
https://notcve.org/view.php?id=CVE-2015-1536
01 Oct 2015 — Integer overflow in the Bitmap_createFromParcel function in core/jni/android/graphics/Bitmap.cpp in Android before 5.1.1 LMY48I allows attackers to cause a denial of service (system_server crash) or obtain sensitive system_server memory-content information via a crafted application that leverages improper unmarshalling of bitmaps, aka internal bug 19666945. Desbordamiento de entero en la función Bitmap_createFromParcel en core/jni/Android/graphics/Bitmap.cpp en Android en versiones anteriores a 5.1.1 LMY48I... • https://android.googlesource.com/platform/frameworks/base/+/d44e5bde18a41beda39d49189bef7f2ba7c8f3cb • CWE-189: Numeric Errors •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2014-7917
https://notcve.org/view.php?id=CVE-2014-7917
01 Oct 2015 — Integer overflow in SampleTable.cpp in libstagefright in Android before 5.0.0 has unspecified impact and attack vectors, aka internal bug 15342615. Desbordamiento de entero en SampleTable.cpp en libstagefright en Android en versiones anteriores a 5.0.0, tiene un impacto y vectores de ataque no especificados, también conocida como error interno 15342615. • http://events.linuxfoundation.org/sites/events/files/slides/ABS2015.pdf • CWE-189: Numeric Errors •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2015-6575
https://notcve.org/view.php?id=CVE-2015-6575
01 Oct 2015 — SampleTable.cpp in libstagefright in Android before 5.1.1 LMY48I does not properly consider integer promotion, which allows remote attackers to execute arbitrary code or cause a denial of service (integer overflow and memory corruption) via crafted atoms in MP4 data, aka internal bug 20139950, a different vulnerability than CVE-2015-1538. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-7915, CVE-2014-7916, and/or CVE-2014-7917. SampleTable.cpp en libstagefright en Android en versio... • https://android.googlesource.com/platform/frameworks/av/+/cf1581c66c2ad8c5b1aaca2e43e350cf5974f46d • CWE-189: Numeric Errors •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2014-7916
https://notcve.org/view.php?id=CVE-2014-7916
01 Oct 2015 — Integer overflow in SampleTable.cpp in libstagefright in Android before 5.0.0 has unspecified impact and attack vectors, aka internal bug 15342751. Desbordamiento de entero en SampleTable.cpp en libstagefright en Android en versiones anteriores a 5.0.0, tiene un impacto y vectores de ataque no especificados, también conocida como error interno 15342751. • http://events.linuxfoundation.org/sites/events/files/slides/ABS2015.pdf • CWE-189: Numeric Errors •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 2CVE-2015-3860
https://notcve.org/view.php?id=CVE-2015-3860
01 Oct 2015 — packages/Keyguard/res/layout/keyguard_password_view.xml in Lockscreen in Android 5.x before 5.1.1 LMY48M does not restrict the number of characters in the passwordEntry input field, which allows physically proximate attackers to bypass intended access restrictions via a long password that triggers a SystemUI crash, aka internal bug 22214934. packages/Keyguard/res/layout/keyguard_password_view.xml en Lockscreen en Android 5.x en versiones anteriores a 5.1.1 LMY48M no restringe el número de caracteres en el c... • http://sites.utexas.edu/iso/2015/09/15/android-5-lockscreen-bypass • CWE-284: Improper Access Control •