CVE-2019-2021
CVE-2019-2021 describes an information-disclosure flaw in the Android rw_t3t.cc component: in rw_t3t_act_handle_ndef_detect_rsp there is a missing bounds check that allows an out-of-bounds read. This could enable local information disclosure with no execution privileges required, and exploitation...