Heartbleed and Android
We already wrote about the Heartbleed vulnerability found in some versions of OpenSSL here . Although this vulnerability is of the server-side type and is susceptible to servers, a large number of different software also uses OpenSSL and is subject to update. No exception and Android. Google’s statement regarding the exposure of their services to this vulnerability has a remarkable suggestion.
This suggests that if you are using Android version 4.1.1 (Jelly Bean) on your smartphone, you need to upgrade your version as soon as possible (if your manufacturer has released its adapted version of the firmware).
To check the version of your OS, go to “Settings” - “About phone” - “Software updates”.
')
Note that this version of Android is used on a huge number of devices. The following shows statistics from developer.android.com .
Android versions of Android are immune to CVE-2014-0160 ( with the limited exception of Android 4.1.1; patching information for Android 4.1.1 is being distributed to Android partners ).
This suggests that if you are using Android version 4.1.1 (Jelly Bean) on your smartphone, you need to upgrade your version as soon as possible (if your manufacturer has released its adapted version of the firmware).
To check the version of your OS, go to “Settings” - “About phone” - “Software updates”.
')
Note that this version of Android is used on a huge number of devices. The following shows statistics from developer.android.com .
Source: https://habr.com/ru/post/219111/
All Articles