Back to all categorys

Remote Code Execution Vulnerabilities in libstagefright

CVE-2015-3867

(json)

• CVE numbers: CVE-2015-3867 [Bulletin-CVE-2015-3867]
• Coordinated disclosure?: unknown
• Categories: Remote Code Execution Vulnerabilities in libstagefright
• Details: libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23213430. [NIST-CVE-2015-3867]
• Discovered by: on: Unknown
• Reported on: 2015-10-01 [Bulletin-CVE-2015-3867]
• Fixed on: 2015-05-08 [ANDROID-23213430]
• Fix released on: Unknown
• Affected versions: 5.1 and below [Bulletin-CVE-2015-3867] regex: ([1-4].[0-9].[0-9])|(5.[0-1].[0-9])
• Affected devices:
• Affected manufacturers: all [Bulletin-CVE-2015-3867]
• Fixed versions:
• Submission: by: Daniel Carter, on: 2019-07-29

CVE-2015-6601

(json)

• CVE numbers: CVE-2015-6601 [Bulletin-CVE-2015-6601]
• Coordinated disclosure?: unknown
• Categories: Remote Code Execution Vulnerabilities in libstagefright
• Details: libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 22935234. [NIST-CVE-2015-6601]
• Discovered by: on: Unknown
• Reported on: 2015-10-01 [Bulletin-CVE-2015-6601]
• Fixed on: 2015-06-04 [ANDROID-22935234]
• Fix released on: Unknown
• Affected versions: 5.1 and below [Bulletin-CVE-2015-6601] regex: ([1-4].[0-9].[0-9])|(5.[0-1].[0-9])
• Affected devices:
• Affected manufacturers: all [Bulletin-CVE-2015-6601]
• Fixed versions:
• Submission: by: Daniel Carter, on: 2019-07-29

CVE-2015-3870

(json)

• CVE numbers: CVE-2015-3870 [Bulletin-CVE-2015-3870]
• Coordinated disclosure?: unknown
• Categories: Remote Code Execution Vulnerabilities in libstagefright
• Details: libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 22771132. [NIST-CVE-2015-3870]
• Discovered by: on: Unknown
• Reported on: 2015-10-01 [Bulletin-CVE-2015-3870]
• Fixed on: 2015-06-25 [ANDROID-22771132]
• Fix released on: Unknown
• Affected versions: 5.1 and below [Bulletin-CVE-2015-3870] regex: ([1-4].[0-9].[0-9])|(5.[0-1].[0-9])
• Affected devices:
• Affected manufacturers: all [Bulletin-CVE-2015-3870]
• Fixed versions:
• Submission: by: Daniel Carter, on: 2019-07-29

CVE-2015-3823

(json)

• CVE numbers: CVE-2015-3823 [Bulletin-CVE-2015-3823]
• Coordinated disclosure?: unknown
• Categories: Remote Code Execution Vulnerabilities in libstagefright
• Details: libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 21335999. [NIST-CVE-2015-3823]
• Discovered by: on: Unknown
• Reported on: 2015-10-01 [Bulletin-CVE-2015-3823]
• Fixed on: 2015-07-16 [ANDROID-21335999]
• Fix released on: Unknown
• Affected versions: 5.1 and below [Bulletin-CVE-2015-3823] regex: ([1-4].[0-9].[0-9])|(5.[0-1].[0-9])
• Affected devices:
• Affected manufacturers: all [Bulletin-CVE-2015-3823]
• Fixed versions:
• Submission: by: Daniel Carter, on: 2019-07-29

CVE-2015-3871

(json)

• CVE numbers: CVE-2015-3871 [Bulletin-CVE-2015-3871]
• Coordinated disclosure?: unknown
• Categories: Remote Code Execution Vulnerabilities in libstagefright
• Details: libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23031033. [NIST-CVE-2015-3871]
• Discovered by: on: Unknown
• Reported on: 2015-10-01 [Bulletin-CVE-2015-3871]
• Fixed on: 2015-08-03 [ANDROID-23031033]
• Fix released on: Unknown
• Affected versions: 5.1 and below [Bulletin-CVE-2015-3871] regex: ([1-4].[0-9].[0-9])|(5.[0-1].[0-9])
• Affected devices:
• Affected manufacturers: all [Bulletin-CVE-2015-3871]
• Fixed versions:
• Submission: by: Daniel Carter, on: 2019-07-29

CVE-2015-6600

(json)

• CVE numbers: CVE-2015-6600 [Bulletin-CVE-2015-6600]
• Coordinated disclosure?: unknown
• Categories: Remote Code Execution Vulnerabilities in libstagefright
• Details: libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 22882938. [NIST-CVE-2015-6600]
• Discovered by: on: Unknown
• Reported on: 2015-10-01 [Bulletin-CVE-2015-6600]
• Fixed on: 2015-08-04 [ANDROID-22882938]
• Fix released on: Unknown
• Affected versions: 5.1 and below [Bulletin-CVE-2015-6600] regex: ([1-4].[0-9].[0-9])|(5.[0-1].[0-9])
• Affected devices:
• Affected manufacturers: all [Bulletin-CVE-2015-6600]
• Fixed versions:
• Submission: by: Daniel Carter, on: 2019-07-29

CVE-2015-3869

(json)

• CVE numbers: CVE-2015-3869 [Bulletin-CVE-2015-3869]
• Coordinated disclosure?: unknown
• Categories: Remote Code Execution Vulnerabilities in libstagefright
• Details: libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23036083. [NIST-CVE-2015-3869]
• Discovered by: on: Unknown
• Reported on: 2015-10-01 [Bulletin-CVE-2015-3869]
• Fixed on: 2015-08-06 [ANDROID-23036083]
• Fix released on: Unknown
• Affected versions: 5.1 and below [Bulletin-CVE-2015-3869] regex: ([1-4].[0-9].[0-9])|(5.[0-1].[0-9])
• Affected devices:
• Affected manufacturers: all [Bulletin-CVE-2015-3869]
• Fixed versions:
• Submission: by: Daniel Carter, on: 2019-07-29

CVE-2015-6604

(json)

• CVE numbers: CVE-2015-6604 [Bulletin-CVE-2015-6604]
• Coordinated disclosure?: unknown
• Categories: Remote Code Execution Vulnerabilities in libstagefright
• Details: libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23129786. [NIST-CVE-2015-6604]
• Discovered by: on: Unknown
• Reported on: 2015-10-01 [Bulletin-CVE-2015-6604]
• Fixed on: 2015-08-12 [ANDROID-23129786]
• Fix released on: Unknown
• Affected versions: 5.1 and below [Bulletin-CVE-2015-6604] regex: ([1-4].[0-9].[0-9])|(5.[0-1].[0-9])
• Affected devices:
• Affected manufacturers: all [Bulletin-CVE-2015-6604]
• Fixed versions:
• Submission: by: Daniel Carter, on: 2019-07-29

CVE-2015-6603

(json)

• CVE numbers: CVE-2015-6603 [Bulletin-CVE-2015-6603]
• Coordinated disclosure?: unknown
• Categories: Remote Code Execution Vulnerabilities in libstagefright
• Details: libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23227354. [NIST-CVE-2015-6603]
• Discovered by: on: Unknown
• Reported on: 2015-10-01 [Bulletin-CVE-2015-6603]
• Fixed on: 2015-08-14 [ANDROID-23227354]
• Fix released on: Unknown
• Affected versions: 5.1 and below [Bulletin-CVE-2015-6603] regex: ([1-4].[0-9].[0-9])|(5.[0-1].[0-9])
• Affected devices:
• Affected manufacturers: all [Bulletin-CVE-2015-6603]
• Fixed versions:
• Submission: by: Daniel Carter, on: 2019-07-29

CVE-2015-3876

(json)

• CVE numbers: CVE-2015-3876 [Bulletin-CVE-2015-3876]
• Coordinated disclosure?: unknown
• Categories: Remote Code Execution Vulnerabilities in libstagefright
• Details: libstagefright in Android through 5.1.1 LMY48M allows remote attackers to execute arbitrary code via crafted metadata in a (1) MP3 or (2) MP4 file. [NIST-CVE-2015-3876]
• Discovered by: on: Unknown
• Reported on: 2015-10-01 [Bulletin-CVE-2015-3876]
• Fixed on: 2015-08-15 [ANDROID-23285192]
• Fix released on: Unknown
• Affected versions: 5.1 and below [Bulletin-CVE-2015-3876] regex: ([1-4].[0-9].[0-9])|(5.[0-1].[0-9])
• Affected devices:
• Affected manufacturers: all [Bulletin-CVE-2015-3876]
• Fixed versions:
• Submission: by: Daniel Carter, on: 2019-07-29

CVE-2015-3868

(json)

• CVE numbers: CVE-2015-3868 [Bulletin-CVE-2015-3868]
• Coordinated disclosure?: unknown
• Categories: Remote Code Execution Vulnerabilities in libstagefright
• Details: libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23270724. [NIST-CVE-2015-3868]
• Discovered by: on: Unknown
• Reported on: 2015-10-01 [Bulletin-CVE-2015-3868]
• Fixed on: 2015-08-18 [ANDROID-23270724]
• Fix released on: Unknown
• Affected versions: 5.1 and below [Bulletin-CVE-2015-3868] regex: ([1-4].[0-9].[0-9])|(5.[0-1].[0-9])
• Affected devices:
• Affected manufacturers: all [Bulletin-CVE-2015-3868]
• Fixed versions:
• Submission: by: Daniel Carter, on: 2019-07-29

CVE-2015-3873

(json)

• CVE numbers: CVE-2015-3873 [Bulletin-CVE-2015-3873]
• Coordinated disclosure?: unknown
• Categories: Remote Code Execution Vulnerabilities in libstagefright
• Details: libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bugs 23016072, 23248776, 23247055, 22845824, 22008959, 21814993, 21048776, 20718524, 20674674, 22388975, 20674086, 21443020, and 22077698, a different vulnerability than CVE-2015-7716. [NIST-CVE-2015-3873]
• Discovered by: on: Unknown
• Reported on: 2015-10-01 [Bulletin-CVE-2015-3873]
• Fixed on: 2015-08-18 [ANDROID-23247055]
• Fix released on: Unknown
• Affected versions: 5.1 and below, 5.0 and 5.1 [Bulletin-CVE-2015-3873] regex: ([1-4].[0-9].[0-9])|(5.[0-1].[0-9])
• Affected devices:
• Affected manufacturers: all [Bulletin-CVE-2015-3873]
• Fixed versions:
• Submission: by: Daniel Carter, on: 2019-07-29

CVE-2015-6598

(json)

• CVE numbers: CVE-2015-6598 [Bulletin-CVE-2015-6598]
• Coordinated disclosure?: unknown
• Categories: Remote Code Execution Vulnerabilities in libstagefright
• Details: libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23306638. [NIST-CVE-2015-6598]
• Discovered by: on: Unknown
• Reported on: 2015-10-01 [Bulletin-CVE-2015-6598]
• Fixed on: 2015-08-18 [ANDROID-23306638]
• Fix released on: Unknown
• Affected versions: 5.1 and below [Bulletin-CVE-2015-6598] regex: ([1-4].[0-9].[0-9])|(5.[0-1].[0-9])
• Affected devices:
• Affected manufacturers: all [Bulletin-CVE-2015-6598]
• Fixed versions:
• Submission: by: Daniel Carter, on: 2019-07-29

CVE-2015-3872

(json)

• CVE numbers: CVE-2015-3872 [Bulletin-CVE-2015-3872]
• Coordinated disclosure?: unknown
• Categories: Remote Code Execution Vulnerabilities in libstagefright
• Details: libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23346388. [NIST-CVE-2015-3872]
• Discovered by: on: Unknown
• Reported on: 2015-10-01 [Bulletin-CVE-2015-3872]
• Fixed on: 2015-08-19 [ANDROID-23346388]
• Fix released on: Unknown
• Affected versions: 5.1 and below [Bulletin-CVE-2015-3872] regex: ([1-4].[0-9].[0-9])|(5.[0-1].[0-9])
• Affected devices:
• Affected manufacturers: all [Bulletin-CVE-2015-3872]
• Fixed versions:
• Submission: by: Daniel Carter, on: 2019-07-29

CVE-2015-6599

(json)

• CVE numbers: CVE-2015-6599 [Bulletin-CVE-2015-6599]
• Coordinated disclosure?: unknown
• Categories: Remote Code Execution Vulnerabilities in libstagefright
• Details: libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23416608. [NIST-CVE-2015-6599]
• Discovered by: on: Unknown
• Reported on: 2015-10-01 [Bulletin-CVE-2015-6599]
• Fixed on: 2015-08-21 [ANDROID-23416608]
• Fix released on: Unknown
• Affected versions: 5.1 and below [Bulletin-CVE-2015-6599] regex: ([1-4].[0-9].[0-9])|(5.[0-1].[0-9])
• Affected devices:
• Affected manufacturers: all [Bulletin-CVE-2015-6599]
• Fixed versions:
• Submission: by: Daniel Carter, on: 2019-07-29