CVE-2024-20007 Information

Description

In mp3 decoder there is a possible out of bounds write due to a race condition. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS08441369; Issue ID: ALPS08441369.

Reference

https://corp.mediatek.com/product-security-bulletin/February-2024