CVE-2018-9353 Information

Description

In ihevcd_parse_slice_data of ihevcd_parse_slice.c there is a possible heap buffer out of bound read due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.

Reference

https://source.android.com/docs/security/bulletin/pixel/2018-06-01