The most serious bugs are elevation-of-privilege issues in the Android System component. The flaws could be remotely exploited to gain access to additional permissions. Google also rolled out patches for flaws in various third-party components in its Android ecosystem. Qualcomm, whose chips are used in Android devices, patched a mix of high- and critical-severity vulnerabilities tied to 22 CVEs. The security update for Google’s Pixel devices has also arrived, and Samsung has also released its own patches.
Source: https://threatpost.com/google-android-system-flaws/159948/