A vulnerability, which was classified as critical , has been found in Google Android . This impacts the function iavb_parse_key_data of the file avb_rsa.c . The manipulation leads to out-of-bounds read. This vulnerability is referenced as CVE-2026-0142 . The attack can only be performed from a local environment. No exploit is available.