{"id":"PUB-A-172908358","details":"In ih264e_fmt_conv_422i_to_420sp of ih264e_fmt_conv.c, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.","aliases":["A-172908358","CVE-2021-0563"],"modified":"2026-05-19T16:54:37.272608834Z","published":"2021-06-01T00:00:00Z","references":[{"type":"ADVISORY","url":"https://source.android.com/security/bulletin/2021-06-01"},{"type":"FIX","url":"https://android.googlesource.com/platform/external/libavc/+/a073696092f26e5060af792b917738602d85686d"},{"type":"FIX","url":"https://android.googlesource.com/platform/frameworks/av/+/af7ae3bf72c9cac13616959247dd3c51b2bc08d4"}],"affected":[{"package":{"name":"platform/external/libavc","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"11:0"},{"fixed":"11:2021-06-01"}]}],"versions":["11"],"ecosystem_specific":{"vanir_signatures":[{"signature_version":"v1","signature_type":"Function","id":"PUB-A-172908358-2856cd57","deprecated":false,"digest":{"function_hash":"67043661238450019411529786566462118406","length":15750},"source":"https://android.googlesource.com/platform/external/libavc/+/a073696092f26e5060af792b917738602d85686d","target":{"function":"ih264e_init_mem_rec","file":"encoder/ih264e_api.c"}},{"signature_version":"v1","signature_type":"Function","id":"PUB-A-172908358-779bbd0b","deprecated":false,"digest":{"function_hash":"236838564394696900995715808026921601155","length":48003},"source":"https://android.googlesource.com/platform/external/libavc/+/a073696092f26e5060af792b917738602d85686d","target":{"function":"api_check_struct_sanity","file":"encoder/ih264e_api.c"}},{"signature_version":"v1","signature_type":"Line","id":"PUB-A-172908358-8e3eb26b","deprecated":false,"source":"https://android.googlesource.com/platform/external/libavc/+/a073696092f26e5060af792b917738602d85686d","digest":{"line_hashes":["11436748622741555211511562974437029475","194746552236668490386555839823404094242","271305084253908989190787299743263654575","42369166078671828517637123268586505691","166562214494024085444415830556737442277","205795958895406637978446509005089323344","270103876551008007276917463242316682025","166590035485662664390855087328233313364","89609602042366023029951434708000026388","305259709436081082713861186704397131955","327685327097549791698800440926496033800","245743310708284359258330936700978576071","102939820916256137337460452902258441929","169429727067567893651861743331070423075","43761950224535564640297412754089217413"],"threshold":0.9},"target":{"file":"encoder/ih264e_api.c"}}],"types":["ID"],"fixes":["https://android.googlesource.com/platform/external/libavc/+/a073696092f26e5060af792b917738602d85686d"],"severity":"Moderate","spl":"2021-06-01"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/PUB-A-172908358.json"}},{"package":{"name":"platform/frameworks/av","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"11:0"},{"fixed":"11:2021-06-01"}]}],"versions":["11"],"ecosystem_specific":{"vanir_signatures":[{"signature_version":"v1","signature_type":"Line","deprecated":false,"id":"PUB-A-172908358-f5edd3c0","source":"https://android.googlesource.com/platform/frameworks/av/+/af7ae3bf72c9cac13616959247dd3c51b2bc08d4","digest":{"line_hashes":["336636637964304245453880552070819168094","286963644758611910438579662897006797633","317823222726588482816670730790310589570","263355126223807820580268602512026633719","190799439872835123293476631510015570551","277533348769438318696019338753518259914","99531519431196115947486263142413648385","135785348826432987630090870206184261848","81047690096263532857802777128652756601","185911114078693463246023048750851155109","213044325801520692774314796550440066821","83174986760686413071624659326766061139","132375665885298955356826781041954764437","329317992006545803284932332248957628134","22759541809916156142191647769864743515","40614379522369386504878861115012744745"],"threshold":0.9},"target":{"file":"media/codec2/components/avc/C2SoftAvcEnc.cpp"}}],"types":["ID"],"fixes":["https://android.googlesource.com/platform/frameworks/av/+/af7ae3bf72c9cac13616959247dd3c51b2bc08d4"],"severity":"Moderate","spl":"2021-06-01"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/PUB-A-172908358.json"}}],"schema_version":"1.7.5"}