Google Inc Android vulnerabilities

CVE-2018-9553 [HIGH] CWE-415 CVE-2018-9553: In MasteringMetadata::Parse of mkvparser.cc there is a possible double free due to an insecure defau In MasteringMetadata::Parse of mkvparser.cc there is a possible double free due to an insecure default value. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android

CVE-2018-9547 [HIGH] CWE-20 CVE-2018-9547: In unflatten of GraphicBuffer.cpp, there is a possible bad fd close due to improper input validation In unflatten of GraphicBuffer.cpp, there is a possible bad fd close due to improper input validation. This could lead to local escalation of privilege in the system server with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-8.1 Android-9. Android ID: A-114223584.

CVE-2018-9568 [HIGH] CWE-704 CVE-2018-9568: In sk_clone_lock of sock.c, there is a possible memory corruption due to type confusion. This could In sk_clone_lock of sock.c, there is a possible memory corruption due to type confusion. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID: A-113509306. References: Upstream kernel.

CVE-2018-9549 [HIGH] CWE-787 CVE-2018-9549: In lppTransposer of lpp_tran.cpp there is a possible out of bounds write due to missing bounds check In lppTransposer of lpp_tran.cpp there is a possible out of bounds write due to missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-11

CVE-2018-9557 [HIGH] CWE-763 CVE-2018-9557: In really_install_package of install.cpp, there is a possible free of arbitrary memory due to uninit In really_install_package of install.cpp, there is a possible free of arbitrary memory due to uninitialized data. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2. Android ID: A-35385357.

CVE-2018-9567 [HIGH] CVE-2018-9567: On Pixel devices there is a bug causing verified boot to show the same certificate fingerprint despi On Pixel devices there is a bug causing verified boot to show the same certificate fingerprint despite using different signing keys. This may lead to local escalation of privilege if people are relying on those fingerprints to determine what version of the OS the device is running, with System execution privileges needed. User interaction is not needed for expl

CVE-2018-9551 [HIGH] CWE-787 CVE-2018-9551: In CAacDecoder_Init of aacdecoder.cpp, there is a possible out-of-bound write due to a missing bound In CAacDecoder_Init of aacdecoder.cpp, there is a possible out-of-bound write due to a missing bounds check. This could lead to remote code execution in the media server with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-112891548.

CVE-2018-9560 [HIGH] CWE-787 CVE-2018-9560: In HID_DevAddRecord of hidd_api.cc, there is a possible out-of-bounds write due to a missing bounds In HID_DevAddRecord of hidd_api.cc, there is a possible out-of-bounds write due to a missing bounds check. This could lead to local escalation of privilege in the Bluetooth service with User execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-79946737.

CVE-2018-9552 [MEDIUM] CWE-787 CVE-2018-9552: In ihevcd_sao_shift_ctb of ihevcd_sao.c there is a possible out of bounds write due to missing bound In ihevcd_sao_shift_ctb of ihevcd_sao.c there is a possible out of bounds write due to missing bounds check. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Androi

CVE-2018-9566 [MEDIUM] CWE-125 CVE-2018-9566: In process_service_search_rsp of sdp_discovery.c, there is a possible out of bounds read due to a mi In process_service_search_rsp of sdp_discovery.c, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure when connecting to a malicious Bluetooth device with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 And

CVE-2018-9548 [MEDIUM] CWE-862 CVE-2018-9548: In multiple functions of ContentProvider.java, there is a possible permission bypass due to a missin In multiple functions of ContentProvider.java, there is a possible permission bypass due to a missing URI validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.

CVE-2018-9554 [MEDIUM] CWE-200 CVE-2018-9554: In dumpExtractors of IMediaExtractor.cp, there is a possible disclosure of recently accessed media f In dumpExtractors of IMediaExtractor.cp, there is a possible disclosure of recently accessed media files due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Androi

CVE-2018-9580 [CRITICAL] CVE-2018-9580: A Elevation of privilege vulnerability in the HTC bootloader. Product: Android. Versions: Android ke A Elevation of privilege vulnerability in the HTC bootloader. Product: Android. Versions: Android kernel. Android ID: A-76222002.

CVE-2018-9531 [HIGH] CWE-787 CVE-2018-9531: In AudioSpecificConfig_Parse of tpdec_asc.cpp, there is a possible out-of-bounds write due to a miss In AudioSpecificConfig_Parse of tpdec_asc.cpp, there is a possible out-of-bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-112661641

CVE-2018-9529 [HIGH] CWE-787 CVE-2018-9529: In ixheaacd_individual_ch_stream of ixheaacd_channel.c there is a possible out of bounds write due t In ixheaacd_individual_ch_stream of ixheaacd_channel.c there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-112551874

CVE-2018-9537 [HIGH] CWE-787 CVE-2018-9537: In CAacDecoder_DecodeFrame of aacdecode.cpp, there is a possible out-of-bounds write due to a missin In CAacDecoder_DecodeFrame of aacdecode.cpp, there is a possible out-of-bounds write due to a missing bounds check. This could lead to remote code execution in the media server with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-112891564

CVE-2018-9528 [HIGH] CWE-787 CVE-2018-9528: In ixheaacd_over_lap_add1_armv8 of ixheaacd_overlap_add1.s there is a possible out of bounds write d In ixheaacd_over_lap_add1_armv8 of ixheaacd_overlap_add1.s there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-112551721

CVE-2018-9536 [HIGH] CWE-787 CVE-2018-9536: In numerous functions of libFDK, there are possible out of bounds writes due to incorrect bounds che In numerous functions of libFDK, there are possible out of bounds writes due to incorrect bounds checks. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-112662184

CVE-2018-9526 [HIGH] CWE-200 CVE-2018-9526: In device configuration data, there is an improperly configured setting. This could lead to remote d In device configuration data, there is an improperly configured setting. This could lead to remote disclosure of device location. User interaction is not needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-112159033

CVE-2018-9534 [HIGH] CWE-787 CVE-2018-9534: In ixheaacd_mps_getstridemap of ixheaacd_mps_parse.c there is a possible out of bounds write due to In ixheaacd_mps_getstridemap of ixheaacd_mps_parse.c there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-112857941