Google’s Android security update for July targets large number of issues


Against the backdrop of news about the HummingBad malware infecting Android devices, Google has released their monthly security update for July. The latest batch of patches addresses over 100 issues, many of them in Android’s own components, along with manufacturer’s chipset specific drivers.

One of the big targets of the update is the Android mediaserver component. That portion of the system handles video and audio stream processing. The patch fixes at least 16 vulnerabilities in that component, including at least 7 critical flaws that could be used to execute code with higher privileges. Another major vulnerability that was addressed involves the OpenSSL and BoringSSL crypto libraries.

Given the breadth of the issues addressed in this month’s update, Google split the updates into two parts. One part applies to all Android devices while the other one includes patches for specific chipsets. The general update was released first and carries a date of July 1. It fixes 32 vulnerabilities including 8 that were rated critical, 15 rated high severity and 9 rated moderate.

Subsequent to that patch, the July 05 security update tackles 75 vulnerabilities that are device specific covering a variety of chipsets including Qualcomm, MediaTek and Nvidia.

To get the patches rolling out to users, Google has released firmware updates for all supported Nexus devices. The patches should be hitting the Android Open Source Project over the next couple days and manufacturers were notified about a month ago so they could start to prepare their own device updates.

source: Android

About the Author: Jeff Causey

Raised in North Carolina, Jeff Causey is a licensed CPA in North Carolina. Jeff's past Android devices include an HTC EVO, a Samsung Note II, an LG G3, and a Motorola Moto X Pure Edition along with a Samsung Galaxy Tablet 10.1. He currently uses a Samsung Galaxy S8 and (very rarely) a Nexus 7 (2013). He is also using a Verizon-branded Motorola Moto Z Play Droid supplied by his job. Jeff used to have a pair of Google Glass and a Moto 360 Sport in his stable of gadgets. Unfortunately, his kids have all drunk the Apple Kool-Aid and have i-devices. Life at home often includes demonstrations of the superiority of his Android based devices. In his free time, Jeff is active an active runner usually training for his next marathon, owns a Mazda MX-5 Miata, and plays Dungeons & Dragons. Jeff has three grown kids and a golden retriever.