The latest vulnerability in Android’s mediaserver component was discovered by security researchers from antivirus firm Trend Micro. It stems from a feature called AudioEffect that does not properly check some buffer sizes that are supplied by clients, like media player applications. The flaw affects Android versions 2.3 to 5.1.1, and a fix for it was published to the Android Open Source Project (AOSP) on Aug. 1. It is now up to phone manufacturers to incorporate the fix into their code and release firmware updates.”]