VYPR

Sonivox

by Google

CVEs (2)

  • CVE-2017-13234MedFeb 12, 2018
    risk 0.42cvss 6.5epss 0.01

    In DLSParser of the sonivox library, there is possible resource exhaustion due to a memory leak. This could lead to remote temporary denial of service with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: 5.1.1,…

  • CVE-2015-3836Oct 1, 2015
    risk 0.00cvss epss 0.03

    The Parse_wave function in arm-wt-22k/lib_src/eas_mdls.c in the Sonivox DLS-to-EAS converter in Android before 5.1.1 LMY48I does not reject a negative value for a certain size field, which allows remote attackers to execute arbitrary code or cause a denial of service (buffer…