1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Google fixes Android bugs, including lingering Mediaserver flaw

Discussion in 'CSO' started by RSS, Mar 8, 2016.

  1. RSS

    RSS New Member Member

    Google addressed 19 security vulnerabilities, seven of them rated critical, in its latest Android security update.

    The updates addressed critical security vulnerabilities in the keyring component, MediaTek Wi-Fi Driver, Conscrypt, the libvpx library, Mediaserver component, and the Qualcomm Performance component. The most severe vulnerability is the remote code execution flaw in Mediaserver that could be exploited through multiple methods, including email, Web browsing, and MMS, when processing maliciously crafted media files.

    [ InfoWorld's Mobile Security Deep Dive. Download it today in your choice of PDF or ePub editions! | Keep up on key mobile developments and insights with the Mobile Tech Report newsletter. ]
    Mediaserver still vulnerable


    Google has patched more than two dozen Mediaserver flaws since August, when the original Stagefright flaw was disclosed. Since then, Google's internal security team has been identifying and fixing other security vulnerabilities scattered throughout the rest of the Mediaserver and the libstagefright library code.

    To read this article in full or to leave a comment, please click here

    Continue reading...
     

Share This Page