SoylentNews
SoylentNews is people
https://soylentnews.org/

Title    Google Fixes Android Flaws that Allow Code Execution with High System Rights
Date    Sunday June 07 2020, @06:01PM
Author    martyb
Topic   
from the another-day-another-exploit dept.
https://soylentnews.org/article.pl?sid=20/06/06/1511204

upstart writes in with an IRC submission:

Google fixes Android flaws that allow code execution with high system rights:

Google has shipped security patches for dozens of vulnerabilities in its Android mobile operating system, two of which could allow hackers to remotely execute malicious code with extremely high system rights.

In some cases, the malware could run with highly elevated privileges, a possibility that raises the severity of the bugs. That's because the bugs, located in the Android System component, could enable a specially crafted transmission to execute arbitrary code within the context of a privileged process. In all, Google released patches for at least 34 security flaws, although some of the vulnerabilities were present only in devices available from manufacturer Qualcomm.

Google's June security bulletin. DHS advisory.

You know wireless branded phones won't get these updates.

Original Submission

Links
  1. "upstart" - https://soylentnews.org/~upstart/
  2. "Google fixes Android flaws that allow code execution with high system rights" - https://arstechnica.com/information-technology/2020/06/google-fixes-android-flaws-that-allow-code-execution-with-high-system-rights/
  3. "June security bulletin" - https://source.android.com/security/bulletin/2020-06-01
  4. "advisory" - https://www.cisecurity.org/advisory/multiple-vulnerabilities-in-google-android-os-could-allow-for-arbitrary-code-execution_2020-073/
  5. "Original Submission" - https://soylentnews.org/submit.pl?op=viewsub&subid=41425
© Copyright 2023 - SoylentNews, All Rights Reserved

printed from SoylentNews, Google Fixes Android Flaws that Allow Code Execution with High System Rights on 2023-07-18 02:08:24