An integer overflow in WhatsApp media parsing libraries allows a remote attacker to perform an out-of-bounds write on the heap via specially-crafted EXIF tags in WEBP images. This issue affects WhatsApp for Android before version 2.19.143 and WhatsApp for iOS before version 2.19.100.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: facebook

Published:

Updated: 2024-08-04T23:10:29.416Z

Reserved: 2019-05-13T00:00:00

Link: CVE-2019-11927

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-09-27T21:15:09.737

Modified: 2024-11-21T04:21:59.963

Link: CVE-2019-11927

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.