CVE-2018-9408 Information

Description

In m3326_gps_write and m3326_gps_read of gps.s there is a possible Out Of Bounds Read due to a missing bounds check. This could lead to a local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.

Reference

https://source.android.com/security/bulletin/pixel/2018-06-01