Google fixed Android vulnerabilities
Google fixed Android vulnerabilities by releasing Android Security Bulletin — July 2016 . A total of 33 vulnerabilities in Android components were fixed, as well as 74 vulnerabilities in third-party components (device specific): Qualcomm, MediaTek, NVIDIA. Most of the vulnerabilities have been fixed in Qualcomm production components, they all belong to the Elevation of Privilege type and can be used by attackers to raise their privileges to the level of the Android core.
As many as seven critical vulnerabilities have been fixed in the infamous Android Mediaserver component, which we have already written about many times in previous posts. Vulnerabilities are related to the Remote Code Execution type and can be used by attackers for remote code execution using a specially crafted media file. To trigger a vulnerability, the file can be delivered to the user using an MMS message or placed on a malicious resource.
')
One of the critical RCE vulnerabilities with the identifier CVE-2016-2108 is present in the components of the cryptographic protocols OpenSSL and BoringSSL. Using this vulnerability, attackers can remotely execute malicious code on a user's device in the context of a specific process using a specially crafted file. Vulnerability is present in all versions of Google supported by Google since version 4.4.4.
Similar to the previous critical RCE vulnerability with identifier CVE-2016-3744 is present in the Bluetooth wireless connection library and allows an attacker to remotely execute the code on the device, approaching it within the working distance of this wireless connection. Vulnerability is present on Android 4.4.4+.
The vulnerability of type Local Privilege Escalation with identifier CVE-2016-3751 is present in the libpng component and allows attackers to run malicious code in the context of a system application.
Vulnerability CVE-2016-3749 in the LockSettingsService component allows a malicious attacking application to unauthorizedly reset the device unlock code to Android. Actually for Android versions 6.0, 6.0.1. Vulnerability is present on Android 4.4.4+.
Multiple vulnerabilities CVE-2016-3754, CVE-2016-3755, CVE-2016-3756 of Denial of Service type are also present in the Mediaserver component and allow attackers to remotely provoke a device hang or reboot using a specially crafted file. Actual for Android 4.4.4+.
The LPE type CVE-2016-3762 is present in the sockets component (sockets) and allows a malicious application to execute its code in the context of the kernel. Actual for Android 5.0.2+.
A complete list of closed vulnerabilities can be found at this link .
This update is addressed to the following versions of Android: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1.
be secure.
As many as seven critical vulnerabilities have been fixed in the infamous Android Mediaserver component, which we have already written about many times in previous posts. Vulnerabilities are related to the Remote Code Execution type and can be used by attackers for remote code execution using a specially crafted media file. To trigger a vulnerability, the file can be delivered to the user using an MMS message or placed on a malicious resource.
')
One of the critical RCE vulnerabilities with the identifier CVE-2016-2108 is present in the components of the cryptographic protocols OpenSSL and BoringSSL. Using this vulnerability, attackers can remotely execute malicious code on a user's device in the context of a specific process using a specially crafted file. Vulnerability is present in all versions of Google supported by Google since version 4.4.4.
Similar to the previous critical RCE vulnerability with identifier CVE-2016-3744 is present in the Bluetooth wireless connection library and allows an attacker to remotely execute the code on the device, approaching it within the working distance of this wireless connection. Vulnerability is present on Android 4.4.4+.
The vulnerability of type Local Privilege Escalation with identifier CVE-2016-3751 is present in the libpng component and allows attackers to run malicious code in the context of a system application.
Vulnerability CVE-2016-3749 in the LockSettingsService component allows a malicious attacking application to unauthorizedly reset the device unlock code to Android. Actually for Android versions 6.0, 6.0.1. Vulnerability is present on Android 4.4.4+.
Multiple vulnerabilities CVE-2016-3754, CVE-2016-3755, CVE-2016-3756 of Denial of Service type are also present in the Mediaserver component and allow attackers to remotely provoke a device hang or reboot using a specially crafted file. Actual for Android 4.4.4+.
The LPE type CVE-2016-3762 is present in the sockets component (sockets) and allows a malicious application to execute its code in the context of the kernel. Actual for Android 5.0.2+.
A complete list of closed vulnerabilities can be found at this link .
This update is addressed to the following versions of Android: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1.
be secure.
Source: https://habr.com/ru/post/305404/
All Articles