Google’s latest Nexus security updates include fixes for half a dozen critical vulnerabilities


Last year, Google made a smart move in changing how it approached security on its Android devices, and rather than waiting to deliver security-related fixes alongside broader platform updates, the company announced a new effort that would see it deliver these patches to Nexus-series hardware on a monthly basis. Ever since, Google’s been making good on its promise, and we can look forward to a new batch of updates near the start of each month. Today it shares details on the latest, while making available all the new factory images for Nexus hardware.

As always, Google’s detailing all the individual bugs these new updates fix, and considering the sheer number of critical-rated vulnerabilities that good give attackers a foothold into compromising unpatched Android systems, we’re very glad those updates are here.

Those include a number of privilege-escalation and code-execution issues, the nastiest of which is yet another Stagefright-like bug that allows maliciously crafted media files to run code on a vulnerable device.

Of special note in this month’s collection of fixes is the promised patch for the Linux kernel keyring bug revealed to the public back in January. While Google explained at the time that modern Android releases already had defenses in place to guard them against successful exploitation, we’re still glad to know the root issue is being dealt with.

Be on the lookout for OTA updates on their way presently, or you can always flash a factory image if you’re not inclined to wait even that long.

Source: Google

Share This Post
What's your reaction?
Love It
Like It
Want It
Had It
Hated It
About The Author
Stephen Schenck
Stephen has been writing about electronics since 2008, which only serves to frustrate him that he waited so long to combine his love of gadgets and his degree in writing. In his spare time, he collects console and arcade game hardware, is a motorcycle enthusiast, and enjoys trapping blue crabs. Stephen's first mobile device was a 624 MHz Dell Axim X30, which he's convinced is still a viable platform. Stephen longs for a market where phones are sold independently of service, and bandwidth is cheap and plentiful; he's not holding his breath. In the meantime, he devours smartphone news and tries to sort out the juicy bits Read more about Stephen Schenck!