Google released new Android versions on September Patch Tuesday. They close security holes in the mobile phone operating system, most of which were classified as high risk.
Advertisement
In Google developers discuss security announcementWhich vulnerabilities will be fixed with the update. Patch level 2024-09-01 seals eleven security vulnerabilities. The Android framework of Android 12, 12L, 13 and 14 has three vulnerabilities that allow attackers to escalate their rights. The system also has five other, high-risk gaps with the same effect. In addition, another vulnerability allows unauthorized spying on information. The Android 14 system has only a denial of service gap. Without further details, Google also closes a leak with the Google Play system update that affects the “remote key provisioning” mechanism.
More improvements to components
Patch level 2024-09-05 fixes security-relevant errors, particularly in various components from third-party manufacturers. The kernel included a privilege escalation vulnerability. There are also updates for ARM Mali graphics drivers, as well as PowerVR graphics units from Imagination Technologies. CPU manufacturers Unisoc and Qualcomm have also closed several leaks at the patch level, some of which are also classified as critical risks.
It is now up to cell phone manufacturers to incorporate security-related bug fixes into firmware updates for Android smartphones and distribute them to affected customers. Google makes premium Pixel cell phones. Loud Google Security Information The updates fix errors with the 2024-09-05 patch level. In addition, the developers are bridging four unspecified gaps that have been classified as critical, as well as two others with a high level of threat.
Google has also just published the source code for Android 15 in AOSP. The first manufacturers should provide the upgrade for supported smartphones soon.
By Android Patch Tuesday in August, Google had already fixed many of the vulnerabilities. However, one of the kernels was already actively attacked and updates were stopped.
After a long delay: Temperature control is available for Eve Thermo
In addition to Google, other manufacturers regularly publish security patches – but usually only for certain product ranges. Devices from other manufacturers get updates much later or, in the worst case, don’t get them at all.
(DMK)
Telecom: Apple TV+ discounted for one year
