SoylentNews

Google Fixes Android Flaws that Allow Code Execution with High System Rights

posted by martyb on Sunday June 07 2020, @06:01PM   
from the another-day-another-exploit dept.

upstart writes in with an IRC submission:

Google fixes Android flaws that allow code execution with high system rights:

Google has shipped security patches for dozens of vulnerabilities in its Android mobile operating system, two of which could allow hackers to remotely execute malicious code with extremely high system rights.

In some cases, the malware could run with highly elevated privileges, a possibility that raises the severity of the bugs. That's because the bugs, located in the Android System component, could enable a specially crafted transmission to execute arbitrary code within the context of a privileged process. In all, Google released patches for at least 34 security flaws, although some of the vulnerabilities were present only in devices available from manufacturer Qualcomm.

Google's June security bulletin. DHS advisory.

You know wireless branded phones won't get these updates.

---

Original Submission

• Re:Query? Re:Query? (Score: 2, Touché) by DECbot on Sunday June 07 2020, @10:10PM (1 child)

  by DECbot (832) on Sunday June 07 2020, @10:10PM (#1004628) Journal

  What are you talking about? Version 5.7 of the Linux kernel just released and we're all busy installing it.

  --
  cats~$ sudo chown -R us /home/base

  Parent

  Starting Score:	1		point
  Moderation		+1
  Touché=1, Total=1
  Extra 'Touché' Modifier		0
  Total Score:		2

• Re:Query? (Score: 0) by Anonymous Coward on Monday June 08 2020, @12:16AM

  by Anonymous Coward on Monday June 08 2020, @12:16AM (#1004669)

  Don't you mean 5.7.1?

  Parent