Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2016-3755 (GCVE-0-2016-3755)
Vulnerability from cvelistv5 – Published: 2016-07-11 01:00 – Updated: 2024-08-06 00:03
VLAI?
EPSS
Summary
decoder/ih264d_parse_pslice.c in mediaserver in Android 6.x before 2016-07-01 does not properly select concealment frames, which allows remote attackers to cause a denial of service (device hang or reboot) via a crafted media file, aka internal bug 28470138.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T00:03:34.453Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://android.googlesource.com/platform/external/libavc/+/d4841f1161bdb5e13cb19e81af42437a634dd6ef"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2016-07-05T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "decoder/ih264d_parse_pslice.c in mediaserver in Android 6.x before 2016-07-01 does not properly select concealment frames, which allows remote attackers to cause a denial of service (device hang or reboot) via a crafted media file, aka internal bug 28470138."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2016-07-11T01:57:01",
"orgId": "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6",
"shortName": "google_android"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://android.googlesource.com/platform/external/libavc/+/d4841f1161bdb5e13cb19e81af42437a634dd6ef"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@android.com",
"ID": "CVE-2016-3755",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "decoder/ih264d_parse_pslice.c in mediaserver in Android 6.x before 2016-07-01 does not properly select concealment frames, which allows remote attackers to cause a denial of service (device hang or reboot) via a crafted media file, aka internal bug 28470138."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://android.googlesource.com/platform/external/libavc/+/d4841f1161bdb5e13cb19e81af42437a634dd6ef",
"refsource": "CONFIRM",
"url": "https://android.googlesource.com/platform/external/libavc/+/d4841f1161bdb5e13cb19e81af42437a634dd6ef"
},
{
"name": "http://source.android.com/security/bulletin/2016-07-01.html",
"refsource": "CONFIRM",
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6",
"assignerShortName": "google_android",
"cveId": "CVE-2016-3755",
"datePublished": "2016-07-11T01:00:00",
"dateReserved": "2016-03-30T00:00:00",
"dateUpdated": "2024-08-06T00:03:34.453Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2016-3755\",\"sourceIdentifier\":\"security@android.com\",\"published\":\"2016-07-11T01:59:55.653\",\"lastModified\":\"2025-04-12T10:46:40.837\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"decoder/ih264d_parse_pslice.c in mediaserver in Android 6.x before 2016-07-01 does not properly select concealment frames, which allows remote attackers to cause a denial of service (device hang or reboot) via a crafted media file, aka internal bug 28470138.\"},{\"lang\":\"es\",\"value\":\"decoder/ih264d_parse_pslice.c en mediaserver en Android 6.x en versiones anteriores a 2016-07-01 no selecciona correctamente marcos de ocultaci\u00f3n, lo cual permite a atacantes remotos provocar una denegaci\u00f3n de servicios (cuelgue o reinicio del dispositivo) a trav\u00e9s de un archivo multimedia manipulado, tambi\u00e9n conocido como error interno 28470138.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:C\",\"baseScore\":7.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.9,\"acInsufInfo\":true,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:google:android:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E70C6D8D-C9C3-4D92-8DFC-71F59E068295\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:google:android:6.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"691FA41B-C2CE-413F-ABB1-0B22CB322807\"}]}]}],\"references\":[{\"url\":\"http://source.android.com/security/bulletin/2016-07-01.html\",\"source\":\"security@android.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://android.googlesource.com/platform/external/libavc/+/d4841f1161bdb5e13cb19e81af42437a634dd6ef\",\"source\":\"security@android.com\"},{\"url\":\"http://source.android.com/security/bulletin/2016-07-01.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://android.googlesource.com/platform/external/libavc/+/d4841f1161bdb5e13cb19e81af42437a634dd6ef\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
CERTFR-2016-AVI-227
Vulnerability from certfr_avis - Published: 2016-07-11 - Updated: 2016-07-11
De multiples vulnérabilités ont été corrigées dans Google Android (Nexus). Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Google Android (Nexus) toutes versions n'intégrant pas le correctif de sécurité du 6 juillet 2016
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003eGoogle Android (Nexus) toutes versions n\u0027int\u00e9grant pas le correctif de s\u00e9curit\u00e9 du 6 juillet 2016\u003c/P\u003e",
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2015-8890",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8890"
},
{
"name": "CVE-2014-9803",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9803"
},
{
"name": "CVE-2016-3801",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3801"
},
{
"name": "CVE-2016-2507",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2507"
},
{
"name": "CVE-2016-0723",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0723"
},
{
"name": "CVE-2016-3773",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3773"
},
{
"name": "CVE-2016-3747",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3747"
},
{
"name": "CVE-2014-9795",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9795"
},
{
"name": "CVE-2016-3799",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3799"
},
{
"name": "CVE-2016-3742",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3742"
},
{
"name": "CVE-2016-3802",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3802"
},
{
"name": "CVE-2014-9794",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9794"
},
{
"name": "CVE-2016-3796",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3796"
},
{
"name": "CVE-2016-3745",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3745"
},
{
"name": "CVE-2016-3770",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3770"
},
{
"name": "CVE-2016-3763",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3763"
},
{
"name": "CVE-2016-3805",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3805"
},
{
"name": "CVE-2016-3760",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3760"
},
{
"name": "CVE-2015-8893",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8893"
},
{
"name": "CVE-2016-3816",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3816"
},
{
"name": "CVE-2016-2502",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2502"
},
{
"name": "CVE-2014-9786",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9786"
},
{
"name": "CVE-2016-3765",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3765"
},
{
"name": "CVE-2014-9783",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9783"
},
{
"name": "CVE-2014-9798",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9798"
},
{
"name": "CVE-2014-9797",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9797"
},
{
"name": "CVE-2015-8891",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8891"
},
{
"name": "CVE-2014-9792",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9792"
},
{
"name": "CVE-2016-3743",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3743"
},
{
"name": "CVE-2016-3758",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3758"
},
{
"name": "CVE-2016-3813",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3813"
},
{
"name": "CVE-2016-3767",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3767"
},
{
"name": "CVE-2016-3750",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3750"
},
{
"name": "CVE-2016-3762",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3762"
},
{
"name": "CVE-2014-9802",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9802"
},
{
"name": "CVE-2016-3818",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3818"
},
{
"name": "CVE-2016-3759",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3759"
},
{
"name": "CVE-2016-2506",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2506"
},
{
"name": "CVE-2016-3774",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3774"
},
{
"name": "CVE-2016-2067",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2067"
},
{
"name": "CVE-2016-3800",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3800"
},
{
"name": "CVE-2016-3766",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3766"
},
{
"name": "CVE-2016-3808",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3808"
},
{
"name": "CVE-2013-7457",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-7457"
},
{
"name": "CVE-2014-9781",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9781"
},
{
"name": "CVE-2014-9778",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9778"
},
{
"name": "CVE-2016-3797",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3797"
},
{
"name": "CVE-2014-9789",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9789"
},
{
"name": "CVE-2016-2107",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2107"
},
{
"name": "CVE-2014-9780",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9780"
},
{
"name": "CVE-2016-3807",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3807"
},
{
"name": "CVE-2016-3751",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3751"
},
{
"name": "CVE-2016-3812",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3812"
},
{
"name": "CVE-2016-3741",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3741"
},
{
"name": "CVE-2014-9799",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9799"
},
{
"name": "CVE-2016-3749",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3749"
},
{
"name": "CVE-2016-3772",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3772"
},
{
"name": "CVE-2014-9779",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9779"
},
{
"name": "CVE-2016-3756",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3756"
},
{
"name": "CVE-2014-9800",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9800"
},
{
"name": "CVE-2015-8889",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8889"
},
{
"name": "CVE-2014-9790",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9790"
},
{
"name": "CVE-2016-3810",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3810"
},
{
"name": "CVE-2016-3761",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3761"
},
{
"name": "CVE-2015-8888",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8888"
},
{
"name": "CVE-2014-9784",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9784"
},
{
"name": "CVE-2016-3771",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3771"
},
{
"name": "CVE-2014-9791",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9791"
},
{
"name": "CVE-2014-9788",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9788"
},
{
"name": "CVE-2014-9793",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9793"
},
{
"name": "CVE-2016-3804",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3804"
},
{
"name": "CVE-2016-3795",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3795"
},
{
"name": "CVE-2016-3793",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3793"
},
{
"name": "CVE-2016-3814",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3814"
},
{
"name": "CVE-2016-3764",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3764"
},
{
"name": "CVE-2014-9785",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9785"
},
{
"name": "CVE-2016-2501",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2501"
},
{
"name": "CVE-2014-9796",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9796"
},
{
"name": "CVE-2016-2505",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2505"
},
{
"name": "CVE-2014-9777",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9777"
},
{
"name": "CVE-2016-3803",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3803"
},
{
"name": "CVE-2016-3748",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3748"
},
{
"name": "CVE-2016-2068",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2068"
},
{
"name": "CVE-2016-3809",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3809"
},
{
"name": "CVE-2016-3746",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3746"
},
{
"name": "CVE-2016-3757",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3757"
},
{
"name": "CVE-2015-8816",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8816"
},
{
"name": "CVE-2016-3798",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3798"
},
{
"name": "CVE-2016-3744",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3744"
},
{
"name": "CVE-2014-9801",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9801"
},
{
"name": "CVE-2016-3769",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3769"
},
{
"name": "CVE-2016-2508",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2508"
},
{
"name": "CVE-2016-3752",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3752"
},
{
"name": "CVE-2016-3792",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3792"
},
{
"name": "CVE-2016-3755",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3755"
},
{
"name": "CVE-2016-3811",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3811"
},
{
"name": "CVE-2015-8892",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8892"
},
{
"name": "CVE-2016-3768",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3768"
},
{
"name": "CVE-2014-9787",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9787"
},
{
"name": "CVE-2016-2108",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2108"
},
{
"name": "CVE-2016-3754",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3754"
},
{
"name": "CVE-2016-3815",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3815"
},
{
"name": "CVE-2016-3806",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3806"
},
{
"name": "CVE-2014-9782",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9782"
},
{
"name": "CVE-2016-3753",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3753"
},
{
"name": "CVE-2016-2503",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2503"
},
{
"name": "CVE-2016-3775",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3775"
}
],
"initial_release_date": "2016-07-11T00:00:00",
"last_revision_date": "2016-07-11T00:00:00",
"links": [],
"reference": "CERTFR-2016-AVI-227",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2016-07-11T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eGoogle Android (Nexus)\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Google Android (Nexus)",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Android du 06 juillet 2016",
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
}
]
}
FKIE_CVE-2016-3755
Vulnerability from fkie_nvd - Published: 2016-07-11 01:59 - Updated: 2025-04-12 10:46
Severity ?
Summary
decoder/ih264d_parse_pslice.c in mediaserver in Android 6.x before 2016-07-01 does not properly select concealment frames, which allows remote attackers to cause a denial of service (device hang or reboot) via a crafted media file, aka internal bug 28470138.
References
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:google:android:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "E70C6D8D-C9C3-4D92-8DFC-71F59E068295",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:google:android:6.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "691FA41B-C2CE-413F-ABB1-0B22CB322807",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "decoder/ih264d_parse_pslice.c in mediaserver in Android 6.x before 2016-07-01 does not properly select concealment frames, which allows remote attackers to cause a denial of service (device hang or reboot) via a crafted media file, aka internal bug 28470138."
},
{
"lang": "es",
"value": "decoder/ih264d_parse_pslice.c en mediaserver en Android 6.x en versiones anteriores a 2016-07-01 no selecciona correctamente marcos de ocultaci\u00f3n, lo cual permite a atacantes remotos provocar una denegaci\u00f3n de servicios (cuelgue o reinicio del dispositivo) a trav\u00e9s de un archivo multimedia manipulado, tambi\u00e9n conocido como error interno 28470138."
}
],
"id": "CVE-2016-3755",
"lastModified": "2025-04-12T10:46:40.837",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": true,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2016-07-11T01:59:55.653",
"references": [
{
"source": "security@android.com",
"tags": [
"Vendor Advisory"
],
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
},
{
"source": "security@android.com",
"url": "https://android.googlesource.com/platform/external/libavc/+/d4841f1161bdb5e13cb19e81af42437a634dd6ef"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://android.googlesource.com/platform/external/libavc/+/d4841f1161bdb5e13cb19e81af42437a634dd6ef"
}
],
"sourceIdentifier": "security@android.com",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
CNVD-2016-04631
Vulnerability from cnvd - Published: 2016-07-11
VLAI Severity ?
Title
Android Mediaserver拒绝服务漏洞(CNVD-2016-04631)
Description
Android是美国谷歌(Google)公司和开放手持设备联盟(简称OHA)共同开发的一套以Linux为基础的开源操作系统。Mediaserver是其中的一个多媒体服务组件。
Android的Mediaserver中存在拒绝服务漏洞。攻击者可借助特制的文件利用该漏洞造成拒绝服务(设备挂起或重启)。
Severity
中
Patch Name
Android Mediaserver拒绝服务漏洞(CNVD-2016-04631)的补丁
Patch Description
Android是美国谷歌(Google)公司和开放手持设备联盟(简称OHA)共同开发的一套以Linux为基础的开源操作系统。Mediaserver是其中的一个多媒体服务组件。
Android的Mediaserver中存在拒绝服务漏洞。攻击者可借助特制的文件利用该漏洞造成拒绝服务(设备挂起或重启)。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
用户可参考如下厂商提供的安全补丁以修复该漏洞: https://source.android.com/security/bulletin/2016-07-01.html
Reference
https://source.android.com/security/bulletin/2016-07-01.html
Impacted products
| Name | Google Android Android 6.*,2016-07-01 |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2016-3755"
}
},
"description": "Android\u662f\u7f8e\u56fd\u8c37\u6b4c\uff08Google\uff09\u516c\u53f8\u548c\u5f00\u653e\u624b\u6301\u8bbe\u5907\u8054\u76df\uff08\u7b80\u79f0OHA\uff09\u5171\u540c\u5f00\u53d1\u7684\u4e00\u5957\u4ee5Linux\u4e3a\u57fa\u7840\u7684\u5f00\u6e90\u64cd\u4f5c\u7cfb\u7edf\u3002Mediaserver\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u591a\u5a92\u4f53\u670d\u52a1\u7ec4\u4ef6\u3002\r\n\r\nAndroid\u7684Mediaserver\u4e2d\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684\u6587\u4ef6\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\uff08\u8bbe\u5907\u6302\u8d77\u6216\u91cd\u542f\uff09\u3002",
"discovererName": "Google",
"formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u5382\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u8865\u4e01\u4ee5\u4fee\u590d\u8be5\u6f0f\u6d1e\uff1a\r\nhttps://source.android.com/security/bulletin/2016-07-01.html",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2016-04631",
"openTime": "2016-07-11",
"patchDescription": "Android\u662f\u7f8e\u56fd\u8c37\u6b4c\uff08Google\uff09\u516c\u53f8\u548c\u5f00\u653e\u624b\u6301\u8bbe\u5907\u8054\u76df\uff08\u7b80\u79f0OHA\uff09\u5171\u540c\u5f00\u53d1\u7684\u4e00\u5957\u4ee5Linux\u4e3a\u57fa\u7840\u7684\u5f00\u6e90\u64cd\u4f5c\u7cfb\u7edf\u3002Mediaserver\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u591a\u5a92\u4f53\u670d\u52a1\u7ec4\u4ef6\u3002\r\n\r\nAndroid\u7684Mediaserver\u4e2d\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684\u6587\u4ef6\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\uff08\u8bbe\u5907\u6302\u8d77\u6216\u91cd\u542f\uff09\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Android Mediaserver\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff08CNVD-2016-04631\uff09\u7684\u8865\u4e01",
"products": {
"product": "Google Android Android 6.*\uff0c2016-07-01"
},
"referenceLink": "https://source.android.com/security/bulletin/2016-07-01.html",
"serverity": "\u4e2d",
"submitTime": "2016-07-09",
"title": "Android Mediaserver\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff08CNVD-2016-04631\uff09"
}
GSD-2016-3755
Vulnerability from gsd - Updated: 2023-12-13 01:21Details
decoder/ih264d_parse_pslice.c in mediaserver in Android 6.x before 2016-07-01 does not properly select concealment frames, which allows remote attackers to cause a denial of service (device hang or reboot) via a crafted media file, aka internal bug 28470138.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2016-3755",
"description": "decoder/ih264d_parse_pslice.c in mediaserver in Android 6.x before 2016-07-01 does not properly select concealment frames, which allows remote attackers to cause a denial of service (device hang or reboot) via a crafted media file, aka internal bug 28470138.",
"id": "GSD-2016-3755"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2016-3755"
],
"details": "decoder/ih264d_parse_pslice.c in mediaserver in Android 6.x before 2016-07-01 does not properly select concealment frames, which allows remote attackers to cause a denial of service (device hang or reboot) via a crafted media file, aka internal bug 28470138.",
"id": "GSD-2016-3755",
"modified": "2023-12-13T01:21:28.201449Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "security@android.com",
"ID": "CVE-2016-3755",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "decoder/ih264d_parse_pslice.c in mediaserver in Android 6.x before 2016-07-01 does not properly select concealment frames, which allows remote attackers to cause a denial of service (device hang or reboot) via a crafted media file, aka internal bug 28470138."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://android.googlesource.com/platform/external/libavc/+/d4841f1161bdb5e13cb19e81af42437a634dd6ef",
"refsource": "CONFIRM",
"url": "https://android.googlesource.com/platform/external/libavc/+/d4841f1161bdb5e13cb19e81af42437a634dd6ef"
},
{
"name": "http://source.android.com/security/bulletin/2016-07-01.html",
"refsource": "CONFIRM",
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:google:android:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:google:android:6.0.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "security@android.com",
"ID": "CVE-2016-3755"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "decoder/ih264d_parse_pslice.c in mediaserver in Android 6.x before 2016-07-01 does not properly select concealment frames, which allows remote attackers to cause a denial of service (device hang or reboot) via a crafted media file, aka internal bug 28470138."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://source.android.com/security/bulletin/2016-07-01.html",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
},
{
"name": "https://android.googlesource.com/platform/external/libavc/+/d4841f1161bdb5e13cb19e81af42437a634dd6ef",
"refsource": "CONFIRM",
"tags": [],
"url": "https://android.googlesource.com/platform/external/libavc/+/d4841f1161bdb5e13cb19e81af42437a634dd6ef"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": true,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
},
"lastModifiedDate": "2016-07-11T17:57Z",
"publishedDate": "2016-07-11T01:59Z"
}
}
}
WID-SEC-W-2025-1426
Vulnerability from csaf_certbund - Published: 2016-07-06 22:00 - Updated: 2025-06-30 22:00Summary
Google Android: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Das Android Betriebssystem von Google ist eine quelloffene Plattform für mobile Geräte. Die Basis bildet der Linux-Kernel.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Google Android ausnutzen, um beliebigen Programmcode mit den Rechten des Dienstes auszuführen, um seine Rechte zu erweitern, um einen Denial of Service Zustand herbeizuführen und um Informationen offenzulegen.
Betroffene Betriebssysteme
- Android
- Blackberry
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Das Android Betriebssystem von Google ist eine quelloffene Plattform f\u00fcr mobile Ger\u00e4te. Die Basis bildet der Linux-Kernel.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Google Android ausnutzen, um beliebigen Programmcode mit den Rechten des Dienstes auszuf\u00fchren, um seine Rechte zu erweitern, um einen Denial of Service Zustand herbeizuf\u00fchren und um Informationen offenzulegen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Android\n- Blackberry",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-1426 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2016/wid-sec-w-2025-1426.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-1426 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1426"
},
{
"category": "external",
"summary": "Android Security Bulletin - July 2016 vom 2016-07-06",
"url": "https://source.android.com/security/bulletin/2016-07-01.html"
},
{
"category": "external",
"summary": "BlackBerry powered by Android Security Bulletin - July 2016 vom 2016-07-06",
"url": "http://support.blackberry.com/kb/articleDetail?articleNumber=000038293"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2016:2009-1 vom 2016-08-09",
"url": "https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00021.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2016:2007-1 vom 2016-08-09",
"url": "https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00020.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2016:2006-1 vom 2016-08-09",
"url": "https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00019.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2016:2005-1 vom 2016-08-09",
"url": "https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00018.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2016:2002-1 vom 2016-08-09",
"url": "https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00016.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2016:2001-1 vom 2016-08-09",
"url": "https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00015.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2016:1995-1 vom 2016-08-09",
"url": "https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00009.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2016:1994-1 vom 2016-08-09",
"url": "https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00008.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2017:0193 vom 2017-01-26",
"url": "https://access.redhat.com/errata/RHSA-2017:0193"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2017:0194 vom 2017-01-26",
"url": "https://access.redhat.com/errata/RHSA-2017:0194"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:0605-1 vom 2017-03-03",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20170605-1.html"
},
{
"category": "external",
"summary": "Dell Security Advisory DSA-2025-234 vom 2025-07-01",
"url": "https://www.dell.com/support/kbdoc/000337969"
}
],
"source_lang": "en-US",
"title": "Google Android: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-06-30T22:00:00.000+00:00",
"generator": {
"date": "2025-07-01T15:23:30.512+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.4.0"
}
},
"id": "WID-SEC-W-2025-1426",
"initial_release_date": "2016-07-06T22:00:00.000+00:00",
"revision_history": [
{
"date": "2016-07-06T22:00:00.000+00:00",
"number": "1",
"summary": "Initial Release"
},
{
"date": "2016-07-06T22:00:00.000+00:00",
"number": "2",
"summary": "Version nicht vorhanden"
},
{
"date": "2016-07-06T22:00:00.000+00:00",
"number": "3",
"summary": "Version nicht vorhanden"
},
{
"date": "2016-08-09T22:00:00.000+00:00",
"number": "4",
"summary": "New remediations available"
},
{
"date": "2016-08-09T22:00:00.000+00:00",
"number": "5",
"summary": "Version nicht vorhanden"
},
{
"date": "2017-01-25T23:00:00.000+00:00",
"number": "6",
"summary": "New remediations available"
},
{
"date": "2017-03-05T23:00:00.000+00:00",
"number": "7",
"summary": "New remediations available"
},
{
"date": "2025-06-30T22:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Dell aufgenommen"
}
],
"status": "final",
"version": "8"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c19.13",
"product": {
"name": "Dell NetWorker \u003c19.13",
"product_id": "T044954"
}
},
{
"category": "product_version",
"name": "19.13",
"product": {
"name": "Dell NetWorker 19.13",
"product_id": "T044954-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:dell:networker:19.13"
}
}
},
{
"category": "product_version_range",
"name": "\u003c19.11.0.5",
"product": {
"name": "Dell NetWorker \u003c19.11.0.5",
"product_id": "T044959"
}
},
{
"category": "product_version",
"name": "19.11.0.5",
"product": {
"name": "Dell NetWorker 19.11.0.5",
"product_id": "T044959-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:dell:networker:19.11.0.5"
}
}
}
],
"category": "product_name",
"name": "NetWorker"
}
],
"category": "vendor",
"name": "Dell"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "4.4.4",
"product": {
"name": "Google Android 4.4.4",
"product_id": "305867",
"product_identification_helper": {
"cpe": "cpe:/o:google:android:4.4.4"
}
}
},
{
"category": "product_version",
"name": "6",
"product": {
"name": "Google Android 6.0",
"product_id": "317179",
"product_identification_helper": {
"cpe": "cpe:/o:google:android:6.0"
}
}
},
{
"category": "product_version",
"name": "5.1.1",
"product": {
"name": "Google Android 5.1.1",
"product_id": "317341",
"product_identification_helper": {
"cpe": "cpe:/o:google:android:5.1.1"
}
}
},
{
"category": "product_version",
"name": "5.0.2",
"product": {
"name": "Google Android 5.0.2",
"product_id": "318068",
"product_identification_helper": {
"cpe": "cpe:/o:google:android:5.0.2"
}
}
},
{
"category": "product_version",
"name": "6.0.1",
"product": {
"name": "Google Android 6.0.1",
"product_id": "318084",
"product_identification_helper": {
"cpe": "cpe:/o:google:android:6.0.1"
}
}
}
],
"category": "product_name",
"name": "Android"
}
],
"category": "vendor",
"name": "Google"
},
{
"branches": [
{
"category": "product_name",
"name": "BlackBerry BlackBerry",
"product": {
"name": "BlackBerry BlackBerry",
"product_id": "1321",
"product_identification_helper": {
"cpe": "cpe:/h:rim:blackberry:-"
}
}
}
],
"category": "vendor",
"name": "RIM"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-3809",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3809"
},
{
"cve": "CVE-2016-3810",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3810"
},
{
"cve": "CVE-2016-3811",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3811"
},
{
"cve": "CVE-2016-3812",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3812"
},
{
"cve": "CVE-2016-3813",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3813"
},
{
"cve": "CVE-2016-3814",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3814"
},
{
"cve": "CVE-2016-3815",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3815"
},
{
"cve": "CVE-2016-3816",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3816"
},
{
"cve": "CVE-2016-3818",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3818"
},
{
"cve": "CVE-2013-7457",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2013-7457"
},
{
"cve": "CVE-2014-9777",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9777"
},
{
"cve": "CVE-2014-9778",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9778"
},
{
"cve": "CVE-2014-9779",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9779"
},
{
"cve": "CVE-2014-9780",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9780"
},
{
"cve": "CVE-2014-9781",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9781"
},
{
"cve": "CVE-2014-9782",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9782"
},
{
"cve": "CVE-2014-9783",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9783"
},
{
"cve": "CVE-2014-9784",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9784"
},
{
"cve": "CVE-2014-9785",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9785"
},
{
"cve": "CVE-2014-9786",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9786"
},
{
"cve": "CVE-2014-9787",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9787"
},
{
"cve": "CVE-2014-9788",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9788"
},
{
"cve": "CVE-2014-9789",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9789"
},
{
"cve": "CVE-2014-9790",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9790"
},
{
"cve": "CVE-2014-9791",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9791"
},
{
"cve": "CVE-2014-9792",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9792"
},
{
"cve": "CVE-2014-9793",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9793"
},
{
"cve": "CVE-2014-9794",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9794"
},
{
"cve": "CVE-2014-9795",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9795"
},
{
"cve": "CVE-2014-9796",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9796"
},
{
"cve": "CVE-2014-9797",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9797"
},
{
"cve": "CVE-2014-9798",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9798"
},
{
"cve": "CVE-2014-9799",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9799"
},
{
"cve": "CVE-2014-9800",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9800"
},
{
"cve": "CVE-2014-9801",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9801"
},
{
"cve": "CVE-2014-9802",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9802"
},
{
"cve": "CVE-2014-9803",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9803"
},
{
"cve": "CVE-2015-8816",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2015-8816"
},
{
"cve": "CVE-2015-8888",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2015-8888"
},
{
"cve": "CVE-2015-8889",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2015-8889"
},
{
"cve": "CVE-2015-8890",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2015-8890"
},
{
"cve": "CVE-2015-8891",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2015-8891"
},
{
"cve": "CVE-2015-8892",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2015-8892"
},
{
"cve": "CVE-2015-8893",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2015-8893"
},
{
"cve": "CVE-2016-0723",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-0723"
},
{
"cve": "CVE-2016-2067",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2067"
},
{
"cve": "CVE-2016-2068",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2068"
},
{
"cve": "CVE-2016-2107",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2107"
},
{
"cve": "CVE-2016-2108",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2108"
},
{
"cve": "CVE-2016-2501",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2501"
},
{
"cve": "CVE-2016-2502",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2502"
},
{
"cve": "CVE-2016-2503",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2503"
},
{
"cve": "CVE-2016-2505",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2505"
},
{
"cve": "CVE-2016-2506",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2506"
},
{
"cve": "CVE-2016-2507",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2507"
},
{
"cve": "CVE-2016-2508",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2508"
},
{
"cve": "CVE-2016-3741",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3741"
},
{
"cve": "CVE-2016-3742",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3742"
},
{
"cve": "CVE-2016-3743",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3743"
},
{
"cve": "CVE-2016-3744",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3744"
},
{
"cve": "CVE-2016-3745",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3745"
},
{
"cve": "CVE-2016-3746",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3746"
},
{
"cve": "CVE-2016-3747",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3747"
},
{
"cve": "CVE-2016-3748",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3748"
},
{
"cve": "CVE-2016-3749",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3749"
},
{
"cve": "CVE-2016-3750",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3750"
},
{
"cve": "CVE-2016-3751",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3751"
},
{
"cve": "CVE-2016-3752",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3752"
},
{
"cve": "CVE-2016-3753",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3753"
},
{
"cve": "CVE-2016-3754",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3754"
},
{
"cve": "CVE-2016-3755",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3755"
},
{
"cve": "CVE-2016-3756",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3756"
},
{
"cve": "CVE-2016-3757",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3757"
},
{
"cve": "CVE-2016-3758",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3758"
},
{
"cve": "CVE-2016-3759",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3759"
},
{
"cve": "CVE-2016-3760",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3760"
},
{
"cve": "CVE-2016-3761",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3761"
},
{
"cve": "CVE-2016-3762",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3762"
},
{
"cve": "CVE-2016-3763",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3763"
},
{
"cve": "CVE-2016-3764",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3764"
},
{
"cve": "CVE-2016-3765",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3765"
},
{
"cve": "CVE-2016-3766",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3766"
},
{
"cve": "CVE-2016-3767",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3767"
},
{
"cve": "CVE-2016-3768",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3768"
},
{
"cve": "CVE-2016-3769",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3769"
},
{
"cve": "CVE-2016-3770",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3770"
},
{
"cve": "CVE-2016-3771",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3771"
},
{
"cve": "CVE-2016-3772",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3772"
},
{
"cve": "CVE-2016-3773",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3773"
},
{
"cve": "CVE-2016-3774",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3774"
},
{
"cve": "CVE-2016-3775",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3775"
},
{
"cve": "CVE-2016-3792",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3792"
},
{
"cve": "CVE-2016-3793",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3793"
},
{
"cve": "CVE-2016-3794",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3794"
},
{
"cve": "CVE-2016-3795",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3795"
},
{
"cve": "CVE-2016-3796",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3796"
},
{
"cve": "CVE-2016-3797",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3797"
},
{
"cve": "CVE-2016-3798",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3798"
},
{
"cve": "CVE-2016-3799",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3799"
},
{
"cve": "CVE-2016-3800",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3800"
},
{
"cve": "CVE-2016-3801",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3801"
},
{
"cve": "CVE-2016-3802",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3802"
},
{
"cve": "CVE-2016-3803",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3803"
},
{
"cve": "CVE-2016-3804",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3804"
},
{
"cve": "CVE-2016-3805",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3805"
},
{
"cve": "CVE-2016-3806",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3806"
},
{
"cve": "CVE-2016-3807",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3807"
},
{
"cve": "CVE-2016-3808",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3808"
}
]
}
GHSA-VM2R-CJJ6-42CG
Vulnerability from github – Published: 2022-05-17 03:51 – Updated: 2022-05-17 03:51
VLAI?
Details
decoder/ih264d_parse_pslice.c in mediaserver in Android 6.x before 2016-07-01 does not properly select concealment frames, which allows remote attackers to cause a denial of service (device hang or reboot) via a crafted media file, aka internal bug 28470138.
Severity ?
7.5 (High)
{
"affected": [],
"aliases": [
"CVE-2016-3755"
],
"database_specific": {
"cwe_ids": [
"CWE-20"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2016-07-11T01:59:00Z",
"severity": "HIGH"
},
"details": "decoder/ih264d_parse_pslice.c in mediaserver in Android 6.x before 2016-07-01 does not properly select concealment frames, which allows remote attackers to cause a denial of service (device hang or reboot) via a crafted media file, aka internal bug 28470138.",
"id": "GHSA-vm2r-cjj6-42cg",
"modified": "2022-05-17T03:51:52Z",
"published": "2022-05-17T03:51:52Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-3755"
},
{
"type": "WEB",
"url": "https://android.googlesource.com/platform/external/libavc/+/d4841f1161bdb5e13cb19e81af42437a634dd6ef"
},
{
"type": "WEB",
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…