When receiving calls using WhatsApp on Android, a stack allocation failed to properly account for the amount of data being passed in. An off-by-one error meant that data was written beyond the allocated space on the stack. This issue affects WhatsApp for Android starting in version 2.18.180 and was fixed in version 2.18.295. It also affects WhatsApp Business for Android starting in version v2.18.103 and was fixed in version v2.18.150.
References
Link | Resource |
---|---|
https://www.facebook.com/security/advisories/cve-2018-6339/ | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2019-06-14 10:29
Updated : 2019-10-09 16:41
NVD link : CVE-2018-6339
Mitre link : CVE-2018-6339
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected