Security News > 2020 > June > Android's June 2020 Patches Fix Critical RCE Vulnerabilities
Google has started rolling out the June 2020 security patches for the Android operating system, which address a total of 43 vulnerabilities, including several rated critical.
This is one of the two critical remote code execution issues patched in System, both affecting Android releases 8.0 through 10.
Google also released patches for two high-severity issues in System that could be exploited for information disclosure, but which impact Android 10 only.
All of the System vulnerabilities were patched as part of the 2020-06-01 security patch level, which also addresses three high-risk issues in Framework and two high-severity flaws in Media framework.
Pixel devices will receive an update to the 2020-06-05 patch level, which fixes all of these flaws, along with the vulnerabilities mentioned in the June 2020 Android Security Bulletin.
News URL
Related news
- Critical RCE Flaw in GFI KerioControl Allows Remote Code Execution via CRLF Injection (source)
- Hackers exploit critical Aviatrix Controller RCE flaw in attacks (source)
- Critical SimpleHelp Flaws Allow File Theft, Privilege Escalation, and RCE Attacks (source)
- SAP fixes critical vulnerabilities in NetWeaver application servers (source)
- Critical vulnerabilities remain unresolved due to prioritization gaps (source)
- Critical SimpleHelp vulnerabilities fixed, update your server instances! (source)
- Critical Flaws in WGS-804HPT Switches Enable RCE and Network Exploitation (source)
- Netgear warns users to patch critical WiFi router vulnerabilities (source)
- Cisco Patches Critical ISE Vulnerabilities Enabling Root CmdExec and PrivEsc (source)
- Critical RCE bug in Microsoft Outlook now exploited in attacks (source)