In alac decoder, there is a possible information disclosure due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08441146; Issue ID: ALPS08441146.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: MediaTek

Published: 2024-02-05T05:59:32.380Z

Updated: 2024-08-01T21:52:31.596Z

Reserved: 2023-11-02T13:35:35.149Z

Link: CVE-2024-20011

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2024-02-05T06:15:47.447

Modified: 2024-11-21T08:51:47.577

Link: CVE-2024-20011

cve-icon Redhat

No data.