Jump to content
  • Android April 2023 Security Updates fix several critical vulnerabilities

    alf9872000

    • 487 views
    • 2 minutes
     Share


    • 487 views
    • 2 minutes

    Google published the Android Security Bulletin for April 2023 earlier today. The bulletin lists vulnerabilities that Google has patched. It is divided into two patch levels: the first contains security fixes for Android system and framework, the second hardware-vendor specific security fixes.

     

    The first patch level addresses issues in system and framework. 10 unique vulnerabilities are addressed in Framework; they have a severity rating of high or moderate, and are either elevation of privilege or denial of service vulnerabilities.

     

    Android System is affected by 16 unique vulnerabilities, two of them rated critical, the remaining 16 high.  The two critical vulnerabilities allow remote code execution on successful exploits. The vulnerabilities rated high allow elevation of privilege, denial of service and information disclosure attacks. Google addressed issues in Google Play's MediaProvider and Wifi components as well.

     

    The second patch level addresses a total of 41 different security issues in various components. Four of the 41 security issues have received a severity rating of critical, the highest rating. All four affect Qualcomm components. The Android April 2023 security updates address a total of 69 different security issues.

     

    Some security updates affect only specific versions of Android, e.g., only Android 13.

     

    Android device owners may want to check the system updates option in Settings to find out if the April 2023 patch is available for their device already. Manufacturers are not always quick when it comes to releasing security updates, but the overall situation has improved in recent years in many regards.

     

    Still, it may take days or weeks before the security updates are offered on certain devices. Some manufacturers may provide additional information on the schedule and scope on their websites.

     

    Samsung, for example, has published information regarding the Android April 2023 already on its website. There, the company lists the critical, high and moderate security issues that Samsung devices are affected by, and the security issues that are not applicable to Samsung devices. Samsung, in addition to addressing these vulnerabilities has also addressed a further 23 Samsung-specific vulnerabilities, which the company published on the security update website as well.

     

    The company is dividing the security updates into two patch levels, with the first release including all Google and Samsung vulnerabilities.

     

    Source


    User Feedback

    Recommended Comments

    There are no comments to display.



    Join the conversation

    You can post now and register later. If you have an account, sign in now to post with your account.
    Note: Your post will require moderator approval before it will be visible.

    Guest
    Add a comment...

    ×   Pasted as rich text.   Paste as plain text instead

      Only 75 emoji are allowed.

    ×   Your link has been automatically embedded.   Display as a link instead

    ×   Your previous content has been restored.   Clear editor

    ×   You cannot paste images directly. Upload or insert images from URL.


  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...