{"id":"PUB-A-179046129","details":"In setRange of ABuffer.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.","aliases":["A-179046129","CVE-2021-0557"],"modified":"2026-05-29T15:55:33.750044621Z","published":"2021-06-01T00:00:00Z","references":[{"type":"ADVISORY","url":"https://source.android.com/security/bulletin/2021-06-01"},{"type":"FIX","url":"https://android.googlesource.com/platform/frameworks/av/+/e69aac87d04a11d08df07a26dfd809b1478c27f6"}],"affected":[{"package":{"name":"platform/frameworks/av","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"11:0"},{"fixed":"11:2021-06-01"}]}],"versions":["11"],"ecosystem_specific":{"severity":"Moderate","spl":"2021-06-01","types":["RCE"],"fixes":["https://android.googlesource.com/platform/frameworks/av/+/e69aac87d04a11d08df07a26dfd809b1478c27f6"],"vanir_signatures":[{"signature_type":"Line","target":{"file":"media/libstagefright/foundation/ABuffer.cpp"},"id":"PUB-A-179046129-9d034aee","source":"https://android.googlesource.com/platform/frameworks/av/+/e69aac87d04a11d08df07a26dfd809b1478c27f6","digest":{"line_hashes":["99336650113145862943455766920828787924","268483394458467215126629887983034763332","133483796300706529004282082419582802410","236296815166282452170750574247494226851"],"threshold":0.9},"deprecated":false,"signature_version":"v1"},{"signature_type":"Function","target":{"file":"media/libstagefright/foundation/ABuffer.cpp","function":"ABuffer::setRange"},"id":"PUB-A-179046129-b49778c3","source":"https://android.googlesource.com/platform/frameworks/av/+/e69aac87d04a11d08df07a26dfd809b1478c27f6","digest":{"length":179,"function_hash":"142929857341053955082865338708716824092"},"signature_version":"v1","deprecated":false}]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/PUB-A-179046129.json"}}],"schema_version":"1.7.5"}