Unrated severityNVD Advisory· Published Oct 1, 2015· Updated Jun 17, 2026

CVE-2015-3835

Description

Buffer overflow in the OMXNodeInstance::emptyBuffer function in omx/OMXNodeInstance.cpp in libstagefright in Android before 5.1.1 LMY48I allows attackers to execute arbitrary code via a crafted application, aka internal bug 20634516.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Google/Android
cpe:2.3:o:google:android:*:*:*:*:*:*:*:*
Range: <=5.1
Google/libstagefrightllm-create
Range: <5.1.1 LMY48I

Patches

Vulnerability mechanics

References

android.googlesource.com/platform/frameworks/av/+/086d84f45ab7b64d1a7ed7ac8ba5833664a6a5abnvdVendor Advisory
android.googlesource.com/platform/frameworks/av/+/3cb1b6944e776863aea316e25fdc16d7f9962902nvdVendor Advisory
groups.google.com/forum/message/rawnvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000