The vid_dec_set_h264_mv_buffers function in drivers/video/msm/vidc/common/dec/vdec.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices does not validate the number of buffers, which allows attackers to gain privileges via a crafted application, aka Android internal bug 28598515 and Qualcomm internal bug CR563694.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: google_android

Published: 2016-07-11T01:00:00

Updated: 2024-08-06T13:55:04.614Z

Reserved: 2016-05-31T00:00:00

Link: CVE-2014-9778

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2016-07-11T01:59:02.193

Modified: 2024-11-21T02:21:39.060

Link: CVE-2014-9778

cve-icon Redhat

No data.