Xingyuan Lin

**Name of the Vulnerable Software and Affected Versions** Android versions Kernel-3.10 through Kernel-3.18 **Description** An information disclosure issue in the kernel UVC driver could allow a local malicious application to access data outside of its permission levels, requiring initial compromise of a privileged process. **Recommendations** For versions Kernel-3.10 through Kernel-3.18, update to a version that includes the fix for this issue to prevent local malicious applications from accessing unauthorized data.