Information Disclosure Vulnerability in libOmxVenc

Information Disclosure Vulnerability in libOmxVenc

CVE-2017-11087 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

libOmxVenc in Android for MSM, Firefox OS for MSM, and QRD Android copies the output buffer to an application with the "filled length", which is larger than the output buffer's actual size, leading to an information disclosure problem in the context of mediaserver.

Learn more about our Cis Benchmark Audit For Google Android.