Google has announced its March 2018 fixes of security updates for Android to state several dangerous and high severity susceptibilities in the famous mobile operating system. The majority of the serious susceptibilities stated this month could let a cybercriminal to implement code distantly on pretentious devices. Influenced components contain media structure, system, and kernel, Nvidia, and Qualcomm components.
An entire of sixteen susceptibilities were stated as part of the 2018-03-01 security fix level: eight regarded crucial severity and eight measured as high risk. The most serious of these susceptibilities could let a distant cybercriminal using a particularly crafted file to run random code with high rights. Four of the Critical flaws (three remote code execution bugs and one elevation of privilege issue) and two high risk flaws were stated in media framework. The left behind four crucial susceptibilities and six high risk problems were determined in system.
The 2018-03-05 security fix level stated 21 susceptibilities, only three of which were valued crucial severity. All of the left over flaws were measured high danger, Google records in a suggestion. The errors mark Kernel gears (two elevation of privilege and four information disclosure High risk issues), NVIDIA components (two High risk elevation of privilege bugs), Qualcomm components (two Critical – remote code execution – and nine High risk – six elevation of privilege, two information disclosure, and one denial of service – vulnerabilities), and Qualcomm closed-source components (one Critical and one High risk).
Google also stated above forty susceptibilities influencing its Pixel / Nexus devices the current month, maximum of them valued adequate severity. A reasonable risk elevation of rights problem was fixed in framework, two high serious rejection of service flaws were determined in Media framework, and two elevation of rights and two facts revelation susceptibilities were patched in system, all four average risk. Google also stated one high risk facts exposed and five adequate elevation of privilege problems in kernel components, three adequate facts exposed flaws in Nvidia components, and eighteen elevation of privilege and nine facts exposed problems in Qualcomm components (all adequate severity).
Pixel 2 and Pixel 2 XL devices also got patches for different working issues that were not associated to the security of these devices. As an alternative, they enhanced screen rouse rendering with fingerprint unlock, audio rendering when recording video, and smash reporting.