CVE-2018-9450
CVE-2018-9450 affects Android via a missing bounds check in avrc_proc_vendor_command (avrc_api.cc), causing an out-of-bounds write that could enable remote code execution without user interaction. Affected Android versions: 6.0–6.0.1, 7.0–7.1.2, 8.0–8.1. The root cause is the missing bounds check...