AndroidVulnerabilities.org

CVE-2017-0405

(json)

• CVE numbers: CVE-2017-0405 [Bulletin-CVE-2017-0405]
• Coordinated disclosure?: unknown
• Categories: Remote code execution vulnerability in Surfaceflinger
• Details: A remote code execution vulnerability in Surfaceflinger could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as Critical due to the possibility of remote code execution within the context of the Surfaceflinger process. Product: Android. Versions: 7.0, 7.1.1. Android ID: A-31960359. [NIST-CVE-2017-0405]
• Discovered by: Scott Bauer (@ScottyBauer1) [Discovery-CVE-2017-0405] on: Unknown
• Reported on: 2017-02-01 [Bulletin-CVE-2017-0405]
• Fixed on: 2016-12-05 [A-31960359]
• Fix released on: Unknown
• Affected versions: 7.0, 7.1.1 [Bulletin-CVE-2017-0405] regex: (7.0.[0-9])|(7.1.1)
• Affected devices:
• Affected manufacturers: all [Bulletin-CVE-2017-0405]
• Fixed versions: 7.0, 7.1.1 [Bulletin-CVE-2017-0405]
• Submission: by: Daniel Carter, on: 2019-07-26