{"id":"PUB-A-204704614","details":"In ih264_resi_trans_quant_4x4_sse42 of ih264_resi_trans_quant_sse42.c, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.","aliases":["A-204704614","CVE-2022-20202"],"modified":"2026-05-01T15:24:27.653932Z","published":"2022-06-01T00:00:00Z","references":[{"type":"ADVISORY","url":"https://source.android.com/security/bulletin/2022-06-01"}],"affected":[{"package":{"name":"platform/external/libavc","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"12L-next:0"},{"fixed":"12L-next:2022-06-01"}]}],"versions":["12L-next"],"ecosystem_specific":{"vanir_signatures":[{"signature_type":"Line","match_only_versions":["12L-next"],"id":"PUB-A-204704614-8b09d3a5","deprecated":false,"signature_version":"v1","source":"https://android.googlesource.com/platform/external/libavc/+/c79d0f5092ccc5add8a34235c354f0aab7de5360","target":{"file":"common/x86/ih264_resi_trans_quant_sse42.c"},"digest":{"threshold":0.9,"line_hashes":["44622745914496267014874877791296844245","313893970382185565386613199094475445908","257814646327669844995465491036676469478","6793148515598271090869928456381078677","182282865985414473214686996667217353797","249950852661262347254393584565518412516","76346859393990299324291514306573837086","199610150649414966720365140681330731351","274438515851141155450210247739734634088","161024641183286775282120190510973194884","319404753035915339849066379499817218151"]}},{"signature_type":"Line","match_only_versions":["12L-next"],"id":"PUB-A-204704614-96144fde","deprecated":false,"signature_version":"v1","source":"https://android.googlesource.com/platform/external/libavc/+/c79d0f5092ccc5add8a34235c354f0aab7de5360","target":{"file":"common/x86/ih264_iquant_itrans_recon_sse42.c"},"digest":{"threshold":0.9,"line_hashes":["213833645873169669765122902573502420698","309724607285731642094842368964131030934","150504983043032572218134993537948161653","199610150649414966720365140681330731351","274563267857326340263529073532652070979","308583840993119412788275443081206660709","194191989803957241180165222696423081960"]}},{"signature_type":"Line","match_only_versions":["12L-next"],"id":"PUB-A-204704614-c4ca4a7b","deprecated":false,"signature_version":"v1","source":"https://android.googlesource.com/platform/external/libavc/+/c79d0f5092ccc5add8a34235c354f0aab7de5360","target":{"file":"common/x86/ih264_platform_macros.h"},"digest":{"threshold":0.9,"line_hashes":["332254097385407575323384742360779584334","33136687610234724484368590363632112158","190821703004177312617854120951885567957"]}},{"signature_type":"Function","match_only_versions":["12L-next"],"id":"PUB-A-204704614-c54c6597","deprecated":false,"signature_version":"v1","source":"https://android.googlesource.com/platform/external/libavc/+/c79d0f5092ccc5add8a34235c354f0aab7de5360","target":{"function":"ih264_resi_trans_quant_4x4_sse42","file":"common/x86/ih264_resi_trans_quant_sse42.c"},"digest":{"function_hash":"193550361473805482818313141826751135633","length":4349}},{"signature_type":"Function","match_only_versions":["12L-next"],"id":"PUB-A-204704614-ea3e056d","deprecated":false,"signature_version":"v1","source":"https://android.googlesource.com/platform/external/libavc/+/c79d0f5092ccc5add8a34235c354f0aab7de5360","target":{"function":"ih264_iquant_itrans_recon_4x4_sse42","file":"common/x86/ih264_iquant_itrans_recon_sse42.c"},"digest":{"function_hash":"302248289238786914772650539557645948751","length":4173}}],"spl":"2022-06-01","severity":"Moderate","fixes":["https://android.googlesource.com/platform/external/libavc/+/c79d0f5092ccc5add8a34235c354f0aab7de5360"],"types":["ID"]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/PUB-A-204704614.json"}},{"package":{"name":"platform/external/libavc","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"12L:0"},{"fixed":"12L:2022-06-01"}]}],"versions":["12L"],"ecosystem_specific":{"vanir_signatures":[{"signature_type":"Line","match_only_versions":["12L"],"id":"PUB-A-204704614-0e268b64","deprecated":false,"signature_version":"v1","source":"https://android.googlesource.com/platform/external/libavc/+/27fbb43bd60cb53f98932db7cb19d5189a6fbaa3","target":{"file":"common/x86/ih264_iquant_itrans_recon_sse42.c"},"digest":{"threshold":0.9,"line_hashes":["213833645873169669765122902573502420698","309724607285731642094842368964131030934","150504983043032572218134993537948161653","199610150649414966720365140681330731351","274563267857326340263529073532652070979","308583840993119412788275443081206660709","194191989803957241180165222696423081960"]}},{"signature_type":"Line","match_only_versions":["12L"],"id":"PUB-A-204704614-74d6d40b","deprecated":false,"signature_version":"v1","source":"https://android.googlesource.com/platform/external/libavc/+/27fbb43bd60cb53f98932db7cb19d5189a6fbaa3","target":{"file":"common/x86/ih264_resi_trans_quant_sse42.c"},"digest":{"threshold":0.9,"line_hashes":["44622745914496267014874877791296844245","313893970382185565386613199094475445908","257814646327669844995465491036676469478","6793148515598271090869928456381078677","182282865985414473214686996667217353797","249950852661262347254393584565518412516","76346859393990299324291514306573837086","199610150649414966720365140681330731351","274438515851141155450210247739734634088","161024641183286775282120190510973194884","319404753035915339849066379499817218151"]}},{"signature_type":"Line","match_only_versions":["12L"],"id":"PUB-A-204704614-d5a50d9b","deprecated":false,"signature_version":"v1","source":"https://android.googlesource.com/platform/external/libavc/+/27fbb43bd60cb53f98932db7cb19d5189a6fbaa3","target":{"file":"common/x86/ih264_platform_macros.h"},"digest":{"threshold":0.9,"line_hashes":["332254097385407575323384742360779584334","33136687610234724484368590363632112158","190821703004177312617854120951885567957"]}},{"signature_type":"Function","match_only_versions":["12L"],"id":"PUB-A-204704614-ed28208b","deprecated":false,"signature_version":"v1","source":"https://android.googlesource.com/platform/external/libavc/+/27fbb43bd60cb53f98932db7cb19d5189a6fbaa3","target":{"function":"ih264_resi_trans_quant_4x4_sse42","file":"common/x86/ih264_resi_trans_quant_sse42.c"},"digest":{"function_hash":"193550361473805482818313141826751135633","length":4349}},{"signature_type":"Function","match_only_versions":["12L"],"id":"PUB-A-204704614-f1ad1bfc","deprecated":false,"signature_version":"v1","source":"https://android.googlesource.com/platform/external/libavc/+/27fbb43bd60cb53f98932db7cb19d5189a6fbaa3","target":{"function":"ih264_iquant_itrans_recon_4x4_sse42","file":"common/x86/ih264_iquant_itrans_recon_sse42.c"},"digest":{"function_hash":"302248289238786914772650539557645948751","length":4173}}],"spl":"2022-06-01","severity":"Moderate","fixes":["https://android.googlesource.com/platform/external/libavc/+/27fbb43bd60cb53f98932db7cb19d5189a6fbaa3"],"types":["ID"]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/PUB-A-204704614.json"}}],"schema_version":"1.7.5"}