Google's April Android Security Update Fixes 8 Critical Vulnerabilities

Advertisement
By Ketan Pratap | Updated: 5 April 2016 12:29 IST
Google's April Android Security Update Fixes 8 Critical Vulnerabilities
Google on Monday started rolling out the April monthly Android security update for its Nexus range of devices. The company says that the security update is now available for Nexus devices through an over-the-air (OTA) update.

The latest Nexus firmware images have also been released to the Google Developer site for download as well as changelogs have been published on the Android Open Source Project (AOSP) for its partners and other manufacturers. Google says that the source code patches for these issues will be released to the Android Open Source Project (AOSP) repository over the next 48 hours. While other manufacturers prepare to release their device-specific updates, BlackBerry has already released the April security update for its Priv Android smartphone.

The latest April update patches eight vulnerabilities that have been flagged as "critical" by Google, and 13 vulnerabilities that fall on the spectrum of "high" severity. The company has also listed eight "moderate" security glitches that have also been resolved.

In its Nexus Security Bulletin for April, Google said the Android security update has fixed one of the most severe Stagefright security vulnerabilities that could enable remote code execution on an affected device through multiple methods (such as email, Web browsing, and MMS) when processing media files. The Bulletin notes that partner OEMs were notified about the issues described in the April security update on March 16, 2016 or earlier.

The critical security vulnerabilities fixed in the update by Google include remote code execution vulnerability in DHCPCD, which if left untreated can enable attacker to cause memory corruption. Other vulnerabilities such as remote code execution vulnerability in media codec, remote code execution vulnerability in mediaserver, and remote code execution vulnerability in libstagefright can allow an attacker to cause memory corruption and remote code execution as the mediaserver process during media file and data processing of a specially crafted file.

Advertisement

Some of the other critical vulnerabilities listed include elevation of privilege vulnerability in kernel, elevation of privilege vulnerability in Qualcomm Performance Module, elevation of Privilege Vulnerability in Qualcomm RF Component, and elevation of Privilege Vulnerability in Kernel.

Notably, the majority of vulnerabilities fixed in the April Android security update were reported to Google late last year or early this year.

Advertisement

Much like the February and March security updates, the April Android security update is purely focused on security fixes and does not upgrade the Android version.

 
Post your comments

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

Further reading: Android 6.0 Marshmallow, Android, Android Security Update, Google, Google Nexus, Nexus
iPhone 6s, iPhone 6s Plus Lock Screen Bypass Lets Anyone Access Contacts, Photos
HTC 10 to Sport 'Best BoomSound Speakers Yet', Touts Company
Advertisement

Related Stories

Tech News in Hindi »

More Technology News in Hindi »
Popular on Gadgets
Latest Gadgets
Popular Mobile Brands
#Trending Stories
  1. Vivo T4 Ultra to Launch in India on This Date
  2. OnePlus 13s Set to Launch in India Tomorrow: Know Price, Specifications
  3. Qualcomm Fixes These Zero-Day Security Vulnerabilities Used By Hackers
  4. Samsung Galaxy Z Fold 7, Z Flip 7 Colourways, RAM and More Tipped
  5. Realme 15 5G Could Arrive in These Colourways and Memory Configurations
  6. Poco F7 Launch Timeline, Key Specifications Leaked Ahead of Debut
  7. ChatGPT Will Now Reference Past Chats to Even Those on the Free Tier
  8. The Witcher 4 Unreal Engine 5 Tech Demo Shows Stunning Open World
#Latest Stories
  1. WazirX Restructuring Plan Rejected By Singapore High Court; Crypto Firm to Appeal Decision
  2. Realme 15 5G to Be Available in Four Memory Configurations, Three Colour Options: Report
  3. Tales of Kenzera: Zau Developer Announces Horror Game Dead Take, Pocketpair Set to Publish
  4. Poco F7 Global Launch Timeline Leaked; Indian Variant Tipped to Feature Larger Battery
  5. Reliance, Airtel Group Challenges 'Low' India Satcom Fee Which Can Help Starlink
  6. Samsung Galaxy Z Fold 7, Galaxy Z Flip 7, Galaxy Z Flip 7 FE Colourways, RAM and Storage Options Leaked Ahead of Debut
  7. Australia Limits Crypto ATM Transactions to AUD 5,000 in Bid to Curb Scams, Money Laundering
  8. Google Opens Access to Gemini 2.5 Native Audio Dialog and Controllable Speech Generation in Preview
  9. Vi, Vivo Partner to Offer Vivo V50e Buyers in India an Exclusive 5G Bundled Plan
  10. Google Weather in Search Reportedly Testing AI-Powered Summaries In Some Cities
Gadgets 360 is available in
Follow Us
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2025. All rights reserved.