What the vulnerability does

01Description

When receiving calls using WhatsApp for Android, a missing size check when parsing a sender-provided packet allowed for a stack-based overflow. This issue affects WhatsApp for Android prior to 2.18.248 and WhatsApp Business for Android prior to 2.18.132.

Key dates

02Disclosure timeline

June 14, 2019 CVE published
August 5, 2024 Record updated