Thursday March 24, 2016

Google Issues Android Security Advisory

Google has announced an emergency security patch that addresses a local elevation of privilege vulnerability found in the Android kernel that affects any device running kernel versions 3.4, 3.10 and 3.14. Devices running kernel version 3.18 are unaffected.

Google has become aware of a rooting application using an unpatched local elevation of privilege vulnerability in the kernel on some Android devices (CVE-2015-1805). For this application to affect a device, the user must first install it. Google already blocks installation of rooting applications that use this vulnerability آ— both within Google Play and outside of Google Play آ— using Verify Apps, and have updated our systems to detect applications that use this specific vulnerability.

Comments