Thread Rating:
  • 1 Vote(s) - 5 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Google Patches 11 Critical RCE Android Vulnerabilities
#1
Quote:Remote code-execution (RCE) vulnerabilities dominated Google’s December Android Security Bulletin.

The flaws are part of a total of 53 unique bugs patched by the Android security team, with a total number of 11 critical bugs – six of which are RCE flaws tied to the operating system’s Media Framework and System components.

According to Google, there are no reports that any of the unique bugs have been exploited or abused in the wild. Patches apply to Google’s Pixel and Nexus devices along with flagship Android phones from Samsung, LG, HTC and others. Over-the-air updates will be sent to Google handsets, and update schedules for other device manufacturers and mobile carriers will vary, according to the bulletin.

The Android Media Framework, which acts as a go-between for media software and hardware, received the brunt of the patching. Four RCE vulnerabilities (CVE-2018-9549, CVE-2018-9550, CVE-2018-9551, CVE-2018-9552) impacted Android Open Source Project operating system versions ranging from 7.0 (Nougat) to 9 (Pie).

The most severe of the vulnerabilities released by the Android Security Team on Monday were the RCE bugs that “could enable a remote attacker using a specially crafted file to execute arbitrary code within the context of a privileged process.”

Source: https://threatpost.com/google-patches-11...es/139612/
[-] The following 1 user says Thank You to silversurfer for this post:
  • harlan4096
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:





[-]
Recent Posts
AWZ Screen Recorder
AWZ Screen Recorder ...zevish — 11:05
Website X5 Go 2024.1
Website X5 Go 2024.1...zevish — 09:32
Apple's rules to allow third-party app ...
Apple has announ...alison30 — 09:28
Intel: Microsoft AI PCs need a Copilot K...
Microsoft hopes th...harlan4096 — 08:55
Synchredible 8 Professional Edition v8.2...
          Synchredib...zevish — 08:54

[-]
Birthdays
Today's Birthdays
No birthdays today.
Upcoming Birthdays
No upcoming birthdays.

[-]
Online Staff
There are no staff members currently online.

>