Wednesday, January 27, 2021
  • Setup menu at Appearance » Menus and assign menu to Top Bar Navigation
Advertisement
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News
No Result
View All Result
NikolaNews
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News
No Result
View All Result
NikolaNews
No Result
View All Result
Home Internet Security

Google: We just fixed these three critical Android bugs with April update

April 2, 2019
in Internet Security
Google: We just fixed these three critical Android bugs with April update
585
SHARES
3.3k
VIEWS
Share on FacebookShare on Twitter

Google fixes browser side-channel leak in its Photo service
Browser side-channel leaks are emerging as the next big threat for per-target stalking ops.

Google’s just-released April 2019 Android security updates address three remote code execution flaws affecting devices running the mobile OS. 

You might also like

Predictive policing is just racist 21st century cyberphrenology

10-years-old Sudo bug lets Linux users gain root-level access

F5 Networks fiscal Q1 revenue, profit beat expectations, revenue outlook higher as well

As usual, Google’s monthly Android update includes two patch levels that are immediately available to Google’s own Pixel devices and have been shared with other Android device makers to distribute to their respective devices. 

The 2019-04-01 patch level includes fixes for two critical remote code execution flaws affecting the Media framework, the Android media library that got a lot more attention after 2015’s Stagefright bugs were found to affect virtually all Android devices and prompted Google to pressure Android vendors to deliver security patches more swiftly and regularly. 

The Media framework bugs affect Android 7 and up and “could enable a remote attacker using a specially crafted file to execute arbitrary code within the context of a privileged process”, according to Google’s bulletin. 

Samsung notes that its April security update includes fixes for the same two Media framework bugs, CVE-2019-2027 and CVE-2019-2028. The patch is available for Samsung’s flagship Galaxy phones. Huawei is also delivering Google’s Media framework fixes in its April update for flagship phones.

The remaining nine flaws are elevation-of-privilege and information-disclosure issues affecting Android, the worst of which could allow an installed malicious app to “execute arbitrary code within the context of a privileged process”.  

The second patch level, 2019-04-05, addresses four flaws in Android itself, including one critical remote code execution bug, as well as dozens of issues affecting Qualcomm components. 

SEE: Cybersecurity in an IoT and mobile world (ZDNet special report) | Download the report as a PDF (TechRepublic)

Google highlighted this week in its 2018 Android security report that end-user patching of its own Pixel devices is a huge success. At the end of 2018, over 95 percent of all Pixel 3 and Pixel 3 XL phones in the wild were running a security update from the past 90 days. 

The company also notes that it has worked with device makers, mobile network operators, and system-on-chip vendors to boost the number of Android devices receiving regular security updates. Google says in Q4 2018 it had “84 percent more Android devices receiving a security update than in the same quarter the prior year”.

Google is also helping Android device makers use a tool called SnoopSnitch, developed by Security Research Labs, whose researchers employ it to find out whether devices from major brands are missing patches from a patch level displayed to users. 

The company found that even well-known vendors like HTC, Huawei, LG, and Motorola are missing on average three to four patches from each patch level, leaving consumers misinformed about the state of their device.

More on Android security

Credit: Source link

Previous Post

Machine Learning To Keep An Eye On Migrating Cells | Asian Scientist Magazine

Next Post

AI, Machine Learning, Data Science: What Enterprises Are Doing

Related Posts

Predictive policing is just racist 21st century cyberphrenology
Internet Security

Predictive policing is just racist 21st century cyberphrenology

January 27, 2021
10-years-old Sudo bug lets Linux users gain root-level access
Internet Security

10-years-old Sudo bug lets Linux users gain root-level access

January 27, 2021
F5 Networks fiscal Q1 revenue, profit beat expectations, revenue outlook higher as well
Internet Security

F5 Networks fiscal Q1 revenue, profit beat expectations, revenue outlook higher as well

January 27, 2021
Apple fixes another three iOS zero-days exploited in the wild
Internet Security

Apple fixes another three iOS zero-days exploited in the wild

January 27, 2021
Firefox support for Flash ends on January 26
Internet Security

Firefox 85 removes Flash and adds protection against supercookies

January 27, 2021
Next Post
AI, Machine Learning, Data Science: What Enterprises Are Doing

AI, Machine Learning, Data Science: What Enterprises Are Doing

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Recommended

Plasticity in Deep Learning: Dynamic Adaptations for AI Self-Driving Cars

Plasticity in Deep Learning: Dynamic Adaptations for AI Self-Driving Cars

January 6, 2019
Microsoft, Google Use Artificial Intelligence to Fight Hackers

Microsoft, Google Use Artificial Intelligence to Fight Hackers

January 6, 2019

Categories

  • Artificial Intelligence
  • Big Data
  • Blockchain
  • Crypto News
  • Data Science
  • Digital Marketing
  • Internet Privacy
  • Internet Security
  • Learn to Code
  • Machine Learning
  • Marketing Technology
  • Neural Networks
  • Technology Companies

Don't miss it

Predictive policing is just racist 21st century cyberphrenology
Internet Security

Predictive policing is just racist 21st century cyberphrenology

January 27, 2021
Apple Warns of 3 iOS Zero-Day Security Vulnerabilities Exploited in the Wild
Internet Privacy

Apple Warns of 3 iOS Zero-Day Security Vulnerabilities Exploited in the Wild

January 27, 2021
Airport Runway Foreign Object Debris (FOD) Detection System to bolster with Advancement in Sensor Technology!
Data Science

Airport Runway Foreign Object Debris (FOD) Detection System to bolster with Advancement in Sensor Technology!

January 27, 2021
New machine learning tool predicts schizophrenia
Machine Learning

New machine learning tool predicts schizophrenia

January 27, 2021
10-years-old Sudo bug lets Linux users gain root-level access
Internet Security

10-years-old Sudo bug lets Linux users gain root-level access

January 27, 2021
In the Wake of the SolarWinds Hack, Here’s How Businesses Should Respond
Internet Privacy

In the Wake of the SolarWinds Hack, Here’s How Businesses Should Respond

January 27, 2021
NikolaNews

NikolaNews.com is an online News Portal which aims to share news about blockchain, AI, Big Data, and Data Privacy and more!

What’s New Here?

  • Predictive policing is just racist 21st century cyberphrenology January 27, 2021
  • Apple Warns of 3 iOS Zero-Day Security Vulnerabilities Exploited in the Wild January 27, 2021
  • Airport Runway Foreign Object Debris (FOD) Detection System to bolster with Advancement in Sensor Technology! January 27, 2021
  • New machine learning tool predicts schizophrenia January 27, 2021

Subscribe to get more!

© 2019 NikolaNews.com - Global Tech Updates

No Result
View All Result
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News

© 2019 NikolaNews.com - Global Tech Updates