Feedly:TrendLabs Security Intelligence Blog. Revisiting CVE-2015-3823: Mediaserver Bug Leads To Heap Overflow, Too

from TrendLabs Security Intelligence Blog

Issues surrounding the Android mediaserver component continue. It has been brought to our attention that a vulnerability (CVE-2015-3823) could (theoretically) be used for arbitrary code execution as well. On August 23, Google raised the severity of this vulnerability to “critical”, indicating that code execution was possible. We have previously discussed how this bug in the mediaserver component of […]