given the severity+exploitable nature of CVE-2023-24033, I wanted to check I'm following this as the language isn't un-ambiguous, afaict, between android's patch level pages and Graphene's. I'm looking for a definitive answer on this unusually bad/disruptive cve for pixel 6, but also hopefully for info that would let me ascertain this myself next time without needing to ask :)
https://source.android.com/docs/security/bulletin/pixel/2023-03-01 <-- lists CVE-2023-24033 as patched with "2023-03-01 patch level"
First, Is that android page the most correct/authoritative source to see what was patched in a given patch level?
Second, note it just says "patch level" - how should a user tell if that refers to the "Android Patch Level" or "2023-03-01 Pixel patch", or other? (eg as listed in GOS changelog https://grapheneos.org/releases#2023031300)