{"id":"ASB-A-150159669","details":"In Parse_wave of eas_mdls.c, there is a possible out of bounds write due to an integer overflow. This could lead to remote information disclosure in a highly constrained process with no additional execution privileges needed. User interaction is not needed for exploitation.","aliases":["A-150159669","CVE-2020-0381"],"modified":"2026-05-01T15:24:27.653932Z","published":"2020-09-01T00:00:00Z","references":[{"type":"ADVISORY","url":"https://source.android.com/security/bulletin/2020-09-01"},{"type":"FIX","url":"https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559"}],"affected":[{"package":{"name":"platform/external/sonivox","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"8.0:0"},{"fixed":"8.0:2020-09-01"}]}],"versions":["8.0"],"ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559"],"types":["ID"],"vanir_signatures":[{"digest":{"line_hashes":["181829900119039477748077015636613502105","275044922620282737198137493696043620510","161414357728343601533595728216280844945","225226006498603879136487070114940970175","327898272321048511827431997499515651495","195343915250230334822997243566450755159","40372055926465743164709369153025518287","28868159654609936766653126901200468324","80578402922742619994225376658138454899","162651561295090071018388869952279649115","223672488514811391834808779992673668364","76241524776169937808472891474266439374","168400085527804080727041962341408644038","52835498832227710783626282201795988401"],"threshold":0.9},"id":"ASB-A-150159669-58ae45fb","deprecated":false,"target":{"file":"arm-wt-22k/lib_src/eas_mdls.c"},"source":"https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559","signature_type":"Line","signature_version":"v1"},{"digest":{"length":824,"function_hash":"314843587702427684691367451123225988324"},"id":"ASB-A-150159669-8d90d204","deprecated":false,"target":{"file":"arm-wt-22k/lib_src/eas_mdls.c","function":"Parse_lrgn"},"source":"https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559","signature_type":"Function","signature_version":"v1"},{"digest":{"length":2457,"function_hash":"169242754845313623448940926297571908202"},"id":"ASB-A-150159669-c45fd484","deprecated":false,"target":{"file":"arm-wt-22k/lib_src/eas_mdls.c","function":"Parse_rgn"},"source":"https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559","signature_type":"Function","signature_version":"v1"},{"digest":{"length":1088,"function_hash":"70004419322198664562718789362116696242"},"id":"ASB-A-150159669-e5c73c75","deprecated":false,"target":{"file":"arm-wt-22k/lib_src/eas_mdls.c","function":"Parse_ptbl"},"source":"https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559","signature_type":"Function","signature_version":"v1"},{"digest":{"length":520,"function_hash":"225007498631071085808511661137921002709"},"id":"ASB-A-150159669-ed4b0499","deprecated":false,"target":{"file":"arm-wt-22k/lib_src/eas_mdls.c","function":"Parse_lins"},"source":"https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559","signature_type":"Function","signature_version":"v1"}],"spl":"2020-09-01","severity":"High"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-150159669.json"}},{"package":{"name":"platform/external/sonivox","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"8.1:0"},{"fixed":"8.1:2020-09-01"}]}],"versions":["8.1"],"ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559"],"types":["ID"],"vanir_signatures":[{"digest":{"length":824,"function_hash":"314843587702427684691367451123225988324"},"id":"ASB-A-150159669-2d2286a7","deprecated":false,"target":{"file":"arm-wt-22k/lib_src/eas_mdls.c","function":"Parse_lrgn"},"source":"https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559","signature_type":"Function","signature_version":"v1"},{"digest":{"length":520,"function_hash":"225007498631071085808511661137921002709"},"id":"ASB-A-150159669-87e05c9b","deprecated":false,"target":{"file":"arm-wt-22k/lib_src/eas_mdls.c","function":"Parse_lins"},"source":"https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559","signature_type":"Function","signature_version":"v1"},{"digest":{"length":1088,"function_hash":"70004419322198664562718789362116696242"},"id":"ASB-A-150159669-9b8d484c","deprecated":false,"target":{"file":"arm-wt-22k/lib_src/eas_mdls.c","function":"Parse_ptbl"},"source":"https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559","signature_type":"Function","signature_version":"v1"},{"digest":{"length":2457,"function_hash":"169242754845313623448940926297571908202"},"id":"ASB-A-150159669-cdd04551","deprecated":false,"target":{"file":"arm-wt-22k/lib_src/eas_mdls.c","function":"Parse_rgn"},"source":"https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559","signature_type":"Function","signature_version":"v1"},{"digest":{"line_hashes":["181829900119039477748077015636613502105","275044922620282737198137493696043620510","161414357728343601533595728216280844945","225226006498603879136487070114940970175","327898272321048511827431997499515651495","195343915250230334822997243566450755159","40372055926465743164709369153025518287","28868159654609936766653126901200468324","80578402922742619994225376658138454899","162651561295090071018388869952279649115","223672488514811391834808779992673668364","76241524776169937808472891474266439374","168400085527804080727041962341408644038","52835498832227710783626282201795988401"],"threshold":0.9},"id":"ASB-A-150159669-d8fc508b","deprecated":false,"target":{"file":"arm-wt-22k/lib_src/eas_mdls.c"},"source":"https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559","signature_type":"Line","signature_version":"v1"}],"spl":"2020-09-01","severity":"High"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-150159669.json"}},{"package":{"name":"platform/external/sonivox","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"9:0"},{"fixed":"9:2020-09-01"}]}],"versions":["9"],"ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559"],"types":["ID"],"vanir_signatures":[{"digest":{"line_hashes":["181829900119039477748077015636613502105","275044922620282737198137493696043620510","161414357728343601533595728216280844945","225226006498603879136487070114940970175","327898272321048511827431997499515651495","195343915250230334822997243566450755159","40372055926465743164709369153025518287","28868159654609936766653126901200468324","80578402922742619994225376658138454899","162651561295090071018388869952279649115","223672488514811391834808779992673668364","76241524776169937808472891474266439374","168400085527804080727041962341408644038","52835498832227710783626282201795988401"],"threshold":0.9},"id":"ASB-A-150159669-1e8d10d3","deprecated":false,"target":{"file":"arm-wt-22k/lib_src/eas_mdls.c"},"source":"https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559","signature_type":"Line","signature_version":"v1"},{"digest":{"length":1088,"function_hash":"70004419322198664562718789362116696242"},"id":"ASB-A-150159669-235b8be9","deprecated":false,"target":{"file":"arm-wt-22k/lib_src/eas_mdls.c","function":"Parse_ptbl"},"source":"https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559","signature_type":"Function","signature_version":"v1"},{"digest":{"length":2457,"function_hash":"169242754845313623448940926297571908202"},"id":"ASB-A-150159669-4d407517","deprecated":false,"target":{"file":"arm-wt-22k/lib_src/eas_mdls.c","function":"Parse_rgn"},"source":"https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559","signature_type":"Function","signature_version":"v1"},{"digest":{"length":824,"function_hash":"314843587702427684691367451123225988324"},"id":"ASB-A-150159669-701318ab","deprecated":false,"target":{"file":"arm-wt-22k/lib_src/eas_mdls.c","function":"Parse_lrgn"},"source":"https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559","signature_type":"Function","signature_version":"v1"},{"digest":{"length":520,"function_hash":"225007498631071085808511661137921002709"},"id":"ASB-A-150159669-b466f188","deprecated":false,"target":{"file":"arm-wt-22k/lib_src/eas_mdls.c","function":"Parse_lins"},"source":"https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559","signature_type":"Function","signature_version":"v1"}],"spl":"2020-09-01","severity":"High"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-150159669.json"}},{"package":{"name":"platform/external/sonivox","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"10:0"},{"fixed":"10:2020-09-01"}]}],"versions":["10"],"ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559"],"types":["ID"],"vanir_signatures":[{"digest":{"line_hashes":["181829900119039477748077015636613502105","275044922620282737198137493696043620510","161414357728343601533595728216280844945","225226006498603879136487070114940970175","327898272321048511827431997499515651495","195343915250230334822997243566450755159","40372055926465743164709369153025518287","28868159654609936766653126901200468324","80578402922742619994225376658138454899","162651561295090071018388869952279649115","223672488514811391834808779992673668364","76241524776169937808472891474266439374","168400085527804080727041962341408644038","52835498832227710783626282201795988401"],"threshold":0.9},"id":"ASB-A-150159669-2f45d6ab","deprecated":false,"target":{"file":"arm-wt-22k/lib_src/eas_mdls.c"},"source":"https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559","signature_type":"Line","signature_version":"v1"},{"digest":{"length":1088,"function_hash":"70004419322198664562718789362116696242"},"id":"ASB-A-150159669-5ba8606c","deprecated":false,"target":{"file":"arm-wt-22k/lib_src/eas_mdls.c","function":"Parse_ptbl"},"source":"https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559","signature_type":"Function","signature_version":"v1"},{"digest":{"length":2457,"function_hash":"169242754845313623448940926297571908202"},"id":"ASB-A-150159669-645f2c13","deprecated":false,"target":{"file":"arm-wt-22k/lib_src/eas_mdls.c","function":"Parse_rgn"},"source":"https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559","signature_type":"Function","signature_version":"v1"},{"digest":{"length":824,"function_hash":"314843587702427684691367451123225988324"},"id":"ASB-A-150159669-b55dbc92","deprecated":false,"target":{"file":"arm-wt-22k/lib_src/eas_mdls.c","function":"Parse_lrgn"},"source":"https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559","signature_type":"Function","signature_version":"v1"},{"digest":{"length":520,"function_hash":"225007498631071085808511661137921002709"},"id":"ASB-A-150159669-d1c34010","deprecated":false,"target":{"file":"arm-wt-22k/lib_src/eas_mdls.c","function":"Parse_lins"},"source":"https://android.googlesource.com/platform/external/sonivox/+/e689e94f3b7473497052e81d906a10a82407e559","signature_type":"Function","signature_version":"v1"}],"spl":"2020-09-01","severity":"High"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-150159669.json"}}],"schema_version":"1.7.5"}