Security News > 2023 > October > Android October security update fixes zero-days exploited in attacks
Google has released the October 2023 security updates for Android, addressing 54 unique vulnerabilities, including two known to be actively exploited.
CVE-2023-4211 is an actively exploited flaw impacting multiple versions of Arm Mali GPU drivers used in a broad range of Android device models.
Of the 54 fixes concerning Android 11 through 13, five are rated critical, and two concern remote code execution problems.
This update follows the standard system of releasing two patch levels: the first focuses on core Android components, while the second addresses the kernel and closed-source components.
That said, users of older Android systems are recommended to upgrade to a newer model or flash their device with a third-party Android distribution that offers security updates for their models.
Arm warns of Mali GPU flaws likely exploited in targeted attacks.
News URL
Related news
- Google fixes two Android zero-days used in targeted attacks (source)
- Update your OpenWrt router! Security issue made supply chain attack possible (source)
- Stop LUCR-3 Attacks: Learn Key Identity Security Tactics in This Expert Webinar (source)
- Microsoft patches Windows zero-day exploited in attacks on Ukraine (source)
- Palo Alto Networks warns of critical RCE zero-day exploited in attacks (source)
- Microsoft pulls Exchange security updates over mail delivery issues (source)
- T-Mobile US 'monitoring' China's 'industry-wide attack' amid fresh security breach fears (source)
- Palo Alto Networks patches two firewall zero-days used in attacks (source)
- AlmaLinux 9.5 released: Security updates, new packages, and more! (source)
- Apple fixes two zero-days used in attacks on Intel-based Macs (source)
Related Vulnerability
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-01 | CVE-2023-4211 | Use After Free vulnerability in ARM products A local non-privileged user can make improper GPU memory processing operations to gain access to already freed memory. | 5.5 |