Google fixed multiple vulnerabilities in Android
Google has released a security update Android Security Bulletin - June 2016 , in which various vulnerabilities in Android components are fixed. Multiple critical LPE vulnerabilities have been fixed in Qualcomm drivers: Video, Sound, GPU, Wi-Fi. Vulnerabilities in Qualcomm components are marked as critical, because in case of successful operation an attacker can execute his code with high privileges in the context of the Android kernel. Another critical RCE vulnerability with identifier CVE-2016-2463 has been closed in the Mediaserver system component, which is responsible for processing multimedia files. The exploitation of the vulnerability is possible with the use of a specially formed multimedia file, which can be sent via MMS or posted on a web page.
Other multiple LPE vulnerabilities in the High-priority Mediaserver component can be used by attackers to enhance their rights in Android. A total of 12 such vulnerabilities in Mediaserver are subject to correction. In this case, the malicious application can get the Signature or SignatureOrSystem rights, which are granted only to legitimate and system Android applications.
')
Fig. Part of the fixed vulnerabilities in the framework of Android Security Bulletin - June 2016.
The two fixed vulnerabilities CVE-2016-2475 and CVE-2016-2493 relate to the Broadcom Wi-Fi driver, using their attacker can change Android settings without sufficient permissions for it, and in the case of the second vulnerability it can run its code in the context of the Android kernel. Fixing these vulnerabilities is relevant for such smartphone models as Nexus 5, Nexus 6, Nexus 6P, Nexus 7 (2013), Nexus 9, Nexus Player, Pixel C. Correcting important LPE vulnerabilities in Mediaserver are subject to Android 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1.
Vulnerability CVE-2016-2495 in Mediaserver is a Denial of Service type and allows an attacker to cause the device to hang or reboot for Android versions such as 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1. Another LPE vulnerability with the identifier CVE-2016-2492 in MediaTek Power Management driver could allow an attacker to execute arbitrary code in the context of the Android kernel. The update is relevant for the Android One smartphone. Similar LPE-vulnerabilities CVE-2016-2490 and CVE-2016-2491 are present in the NVIDIA Camera driver for Nexus 9 devices.
For a description of other vulnerabilities, see source.android.com/security/bulletin/2016-06-01.html .
be secure.
Other multiple LPE vulnerabilities in the High-priority Mediaserver component can be used by attackers to enhance their rights in Android. A total of 12 such vulnerabilities in Mediaserver are subject to correction. In this case, the malicious application can get the Signature or SignatureOrSystem rights, which are granted only to legitimate and system Android applications.
')
Fig. Part of the fixed vulnerabilities in the framework of Android Security Bulletin - June 2016.
The two fixed vulnerabilities CVE-2016-2475 and CVE-2016-2493 relate to the Broadcom Wi-Fi driver, using their attacker can change Android settings without sufficient permissions for it, and in the case of the second vulnerability it can run its code in the context of the Android kernel. Fixing these vulnerabilities is relevant for such smartphone models as Nexus 5, Nexus 6, Nexus 6P, Nexus 7 (2013), Nexus 9, Nexus Player, Pixel C. Correcting important LPE vulnerabilities in Mediaserver are subject to Android 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1.
Vulnerability CVE-2016-2495 in Mediaserver is a Denial of Service type and allows an attacker to cause the device to hang or reboot for Android versions such as 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1. Another LPE vulnerability with the identifier CVE-2016-2492 in MediaTek Power Management driver could allow an attacker to execute arbitrary code in the context of the Android kernel. The update is relevant for the Android One smartphone. Similar LPE-vulnerabilities CVE-2016-2490 and CVE-2016-2491 are present in the NVIDIA Camera driver for Nexus 9 devices.
For a description of other vulnerabilities, see source.android.com/security/bulletin/2016-06-01.html .
be secure.
Source: https://habr.com/ru/post/302792/
All Articles