Technology News

Google's April Android Security Update Fixes 8 Critical Vulnerabilities

By Ketan Pratap | Updated: 5 April 2016 12:29 IST
Google's April Android Security Update Fixes 8 Critical Vulnerabilities
Advertisement
Google on Monday started rolling out the April monthly Android security update for its Nexus range of devices. The company says that the security update is now available for Nexus devices through an over-the-air (OTA) update.

The latest Nexus firmware images have also been released to the Google Developer site for download as well as changelogs have been published on the Android Open Source Project (AOSP) for its partners and other manufacturers. Google says that the source code patches for these issues will be released to the Android Open Source Project (AOSP) repository over the next 48 hours. While other manufacturers prepare to release their device-specific updates, BlackBerry has already released the April security update for its Priv Android smartphone.

The latest April update patches eight vulnerabilities that have been flagged as "critical" by Google, and 13 vulnerabilities that fall on the spectrum of "high" severity. The company has also listed eight "moderate" security glitches that have also been resolved.

In its Nexus Security Bulletin for April, Google said the Android security update has fixed one of the most severe Stagefright security vulnerabilities that could enable remote code execution on an affected device through multiple methods (such as email, Web browsing, and MMS) when processing media files. The Bulletin notes that partner OEMs were notified about the issues described in the April security update on March 16, 2016 or earlier.

The critical security vulnerabilities fixed in the update by Google include remote code execution vulnerability in DHCPCD, which if left untreated can enable attacker to cause memory corruption. Other vulnerabilities such as remote code execution vulnerability in media codec, remote code execution vulnerability in mediaserver, and remote code execution vulnerability in libstagefright can allow an attacker to cause memory corruption and remote code execution as the mediaserver process during media file and data processing of a specially crafted file.

Some of the other critical vulnerabilities listed include elevation of privilege vulnerability in kernel, elevation of privilege vulnerability in Qualcomm Performance Module, elevation of Privilege Vulnerability in Qualcomm RF Component, and elevation of Privilege Vulnerability in Kernel.

Notably, the majority of vulnerabilities fixed in the April Android security update were reported to Google late last year or early this year.

Much like the February and March security updates, the April Android security update is purely focused on security fixes and does not upgrade the Android version.

Comments

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

Further reading: Android 6.0 Marshmallow, Android, Android Security Update, Google, Google Nexus, Nexus
Ketan Pratap
Ketan Pratap
Ketan Pratap is the editor at Gadgets 360 - with over 12 years of experience covering the technology domain. With a breadth and depth of knowledge in the field, he's done extensive work across news, features, reviews, and opinion pieces. But what's truly inspiring about Ketan is how he spends his free time. He's often found gazing at snow-capped mountains from over 20,000 feet while sitting on the hood of his car, taking in the breathtaking beauty of nature. His passion for the great ...More
iPhone 6s, iPhone 6s Plus Lock Screen Bypass Lets Anyone Access Contacts, Photos
HTC 10 to Sport 'Best BoomSound Speakers Yet', Touts Company

Related Stories

Google's April Android Security Update Fixes 8 Critical Vulnerabilities
Comment
Share on Facebook Gadgets360 Twitter Share Tweet Snapchat Share Reddit Comment google-newsGoogle News
 
 

Advertisement

Featured
Follow Us
Latest Videos
More Videos
Tech News in Hindi
More Technology News in Hindi

Advertisement

Popular on Gadgets
Latest Gadgets
Popular Mobile Brands
#Trending Stories
  1. Microsoft's New AI Video Model Can Generate Eerily Realistic Videos
  2. Nothing Ear, Nothing Ear A With Up to 45dB ANC Debut in India: See Price
  3. Vivo V30e Set to Launch in India Soon; Specifications, Colurways Teased
  4. iPhone 17 Plus Tipped to Arrive With A Slightly Smaller Screen
  5. Altstore PAL With Free Delta Nintedo Emulator Debuts in Europe: See Price
  6. HMD Unveils The Boring Phone With No Access to Internet
#Latest Stories
  1. Snapchat to Display Watermark on Images Created Using Snap's Generative AI Tools
  2. Wayve Lingo-2 AI Model With Autonomous Driving Capabilities, Ability to Take Passenger Instructions Showcased
  3. Redmi 13 5G Model Numbers Surface Online; Could Debut in India as Poco M7 Pro 5G
  4. Moto Buds, Moto Buds+ With Dynamic ANC, Hi-Res Audio Launched: Price, Specifications
  5. Android 15 Could Include App Quarantine Feature to Protect Users From Malicious Apps: Report
  6. Tencent InstantMesh, an AI Model Capable of 3D Rendering Static Images Unveiled
  7. 2K Said to Be Gearing Up for an Announcement on the Mafia Series
  8. Vivo V30e Set to Launch in India Soon; Teased to Get 5,500mAh Battery, 50-Megapixel Selfie Camera
  9. Samsung Galaxy M35 5G India Launch Seems Imminent As Support Page Goes Live
  10. Redmi Pad Pro Indian, Global Variants Allegedly Surface on Google Play Console Database
Gadgets 360 is available in
Follow Us
Download Our Apps
App Store App Store
Available in Hindi
App Store
© Copyright Red Pixels Ventures Limited 2024. All rights reserved.
Trending Products »
Latest Tech News »