Medium severity5.5NVD Advisory· Published Aug 5, 2016· Updated May 6, 2026

CVE-2016-3830

Description

codecs/aacdec/SoftAAC2.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01 allows remote attackers to cause a denial of service (device hang or reboot) via crafted ADTS data, aka internal bug 29153599.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

android.googlesource.com/platform/frameworks/av/+/8e438e153f661e9df8db0ac41d587e940352df06nvdIssue TrackingPatch
source.android.com/security/bulletin/2016-08-01.htmlnvdVendor Advisory
www.securityfocus.com/bid/92221nvd

News mentions

No linked articles in our index yet.

cvss	0.358
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000