Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.4
Incorrect Bounds Check in Media Framework Could Lead to Local Privilege Escalation
CVE-2026-0117
Summary
A bug in a media framework's buffer handling code could allow an attacker to gain more access to the system without needing special permissions. This could happen without any user interaction. To stay safe, make sure to keep your media framework up to date with the latest security patches.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| android | All versions | – |
Original title
In mfc_dec_dqbuf of mfc_dec_v4l2.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privilege...
Original description
In mfc_dec_dqbuf of mfc_dec_v4l2.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Vulnerability type
CWE-787
Out-of-bounds Write
Published: 10 Mar 2026 · Updated: 13 Mar 2026 · First seen: 10 Mar 2026