{"id":"PUB-A-179046129", "published":"2021-06-01T00:00:00Z", "modified":"2026-04-30T15:48:46.890647439Z", "aliases":["CVE-2021-0557", "A-179046129"], "details":"In setRange of ABuffer.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.", "affected":[{"package":{"name":"platform/frameworks/av", "ecosystem":"Android"}, "ranges":[{"type":"ECOSYSTEM", "events":[{"introduced":"11:0"}, {"fixed":"11:2021-06-01"}]}], "versions":["11"], "ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/frameworks/av/+/e69aac87d04a11d08df07a26dfd809b1478c27f6"], "severity":"Moderate", "spl":"2021-06-01", "types":["RCE"], "vanir_signatures":[{"deprecated":false, "digest":{"line_hashes":["99336650113145862943455766920828787924", "268483394458467215126629887983034763332", "133483796300706529004282082419582802410", "236296815166282452170750574247494226851"], "threshold":0.9}, "id":"PUB-A-179046129-9d034aee", "signature_type":"Line", "signature_version":"v1", "source":"https://android.googlesource.com/platform/frameworks/av/+/e69aac87d04a11d08df07a26dfd809b1478c27f6", "target":{"file":"media/libstagefright/foundation/ABuffer.cpp"}}, {"deprecated":false, "digest":{"function_hash":"142929857341053955082865338708716824092", "length":179}, "id":"PUB-A-179046129-b49778c3", "signature_type":"Function", "signature_version":"v1", "source":"https://android.googlesource.com/platform/frameworks/av/+/e69aac87d04a11d08df07a26dfd809b1478c27f6", "target":{"file":"media/libstagefright/foundation/ABuffer.cpp", "function":"ABuffer::setRange"}}]}}], "references":[{"type":"ADVISORY", "url":"https://source.android.com/security/bulletin/2021-06-01"}, {"type":"FIX", "url":"https://android.googlesource.com/platform/frameworks/av/+/e69aac87d04a11d08df07a26dfd809b1478c27f6"}]}