CVE-2019-9433

In libvpx, there is a possible information disclosure due to improper input validation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-80479354

Link	Resource
https://source.android.com/security/bulletin/android-10	Vendor Advisory
http://www.openwall.com/lists/oss-security/2019/10/25/17	Mailing List
http://www.openwall.com/lists/oss-security/2019/10/27/1	Mailing List
http://www.openwall.com/lists/oss-security/2019/11/07/1	Mailing List
https://usn.ubuntu.com/4199-1/	Third Party Advisory
https://lists.debian.org/debian-lts-announce/2019/11/msg00030.html	Mailing List Third Party Advisory
https://seclists.org/bugtraq/2019/Nov/43	Mailing List Third Party Advisory
https://www.debian.org/security/2019/dsa-4578	Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U2IIA3RSYABBUCFIHXIRVUT5CTJVWWZ6/	Mailing List Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DQSTK442ATWJOR4TU3MR6C3N5A6NDFFN/	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00049.html	Mailing List Third Party Advisory
https://security.gentoo.org/glsa/202003-59	Third Party Advisory
https://usn.ubuntu.com/4199-2/	Third Party Advisory

Configuration 1

cpe:2.3:o:google:android:10.0:*:*:*:*:*:*:* cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:* cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:* cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*

---

Published : 2019-09-27 07:15

Updated : 2022-10-14 02:09

---

NVD link : CVE-2019-9433

Mitre link : CVE-2019-9433

No products.

CWE-20