Security News > 2020 > October > Google Rolls Out Fixes for High-Severity Android System Flaws
Google has released patches addressing high-severity flaws in its System component.
Two elevation of privilege issues, the most serious of the flaws, exist in the Android System component, the core of the operating system that's on Android phones.
Finally, Google fixed a high-severity EoP flaw in Android runtime, the application runtime environment used by the Android OS. The vulnerability, which could enable a local attacker to execute arbitrary code within the context of an application that uses the library, was fixed in versions 8.0, 8.1, 9, 10 and 11.
Google also rolled out patches for flaws in various third-party components in its Android ecosystem.
Finally, 22 critical and high-severity flaws were addressed in Qualcomm components, including four high-severity flaws in the kernel component and six critical flaws in "Closed-source components."
News URL
https://threatpost.com/google-android-system-flaws/159948/
Related news
- Google Warns of Actively Exploited CVE-2024-43093 Vulnerability in Android System (source)
- Google patches actively exploited Android vulnerability (CVE-2024-43093) (source)
- Google fixes two Android zero-days used in targeted attacks (source)
- Google's mysterious 'search.app' links leave Android users concerned (source)
- Week in review: Zero-click flaw in Synology NAS devices, Google fixes exploited Android vulnerability (source)
- Google launches on-device AI to alert Android users of scam calls in real-time (source)
- Google's New Restore Credentials Tool Simplifies App Login After Android Migration (source)
- SpyLoan Android malware on Google play installed 8 million times (source)
- 8 Million Android Users Hit by SpyLoan Malware in Loan Apps on Google Play (source)