CVE-2019-2051

Name of the Vulnerable Software and Affected Versions Android versions 7.0 through 9

Description The issue is related to a possible out of bounds read in the heap of spaces.h due to improper input validation. This could lead to remote information disclosure when processing a proxy auto config file, with no additional execution privileges needed. User interaction is not required for exploitation.

Recommendations For Android versions 7.0 through 9, update to a version that includes the fix for this issue, as specified in the Android security bulletin.