Security News > 2020 > April > Google Patches Critical RCE Vulnerabilities in Android's System Component

Google Patches Critical RCE Vulnerabilities in Android's System Component
2020-04-07 13:00

Google this week released the April 2020 set of security patches for the Android operating system to address over 50 vulnerabilities, including four critical issues in the System component.

"The most severe of these issues is a critical security vulnerability in the System component that could enable a remote attacker using a specially crafted file to execute arbitrary code within the context of a privileged process," Google notes in an advisory.

Patches for eight other issues were included in the 2020-04-01 security patch level, namely six vulnerabilities in the Framework component, and two in Media framework.

The second part of Google's April 2020 Android Security Bulletin will arrive on devices as 2020-04-05 security patch level, delivering patches for 43 vulnerabilities.

On Google devices, a security patch level of 2020-04-05 or later addresses all of the vulnerabilities included in the Android Security Bulletin-April 2020 and Pixel Update Bulletin-April 2020.


News URL

http://feedproxy.google.com/~r/Securityweek/~3/ZG-vOla5t2w/google-patches-critical-rce-vulnerabilities-androids-system-component

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Google 102 256 4320 4678 741 9995