Η Samsung began to publish the updates security of Android, for the month of September, in order to correct critical vulnerabilities in the operating system system and yes improve their features and capabilities devices.
Android released the updates within the week. Updates include many security patches for critical errors affecting new devices.
The devices Samsung Galaxy began to receive them automatically updates, from yesterday, September 9, 2020.
These updates include many related improvements Wi-Fi, Samsung Keyboard and application Messages. In addition, there are many updates security. Finally, efforts have been made to improve the Pro Video feature.
All vulnerabilities addressed with this update have been identified as serious or critical. Therefore, the users Android must necessarily install the patch to stay safe.
RCE, gaining more privileges in systems and disclosing information
One of the most critical vulnerabilities is CVE-2020-0245, which affects the Media Framework component and allows both remote code execution as well as theft information.
"The most serious vulnerability in Media Framework could allow a remote intruder, using a specially designed file, execute code with increased permissions", Explains the newsletter with the Android security updates.
Most vulnerabilities in the Framework itself allow attackers to gain additional privileges without having to interact with them. users-Victims.
Other vulnerabilities that are fixed with Android updates include:
Framework
| CVE | References | Type | Severity | Updated AOSP versions |
|---|---|---|---|---|
| CVE-2020-0074 | A-146204120 | EoP | High | 8.0, 8.1, 9, 10 |
| CVE-2020-0388 | A-156123285 | EoP | High | 10 |
| CVE-2020-0391 | A-158570769 | EoP | High | 9, 10 |
| CVE-2020-0401 | A-150857253 | EoP | High | 8.0, 8.1, 9, 10 |
| CVE-2020-0382 | A-152944488 | ID | High | 10 |
| CVE-2020-0389 | A-156959408 | ID | High | 10 |
| CVE-2020-0390 | A-157598026 | ID | High | 10 |
| CVE-2020-0395 | A-154124307 | ID | High | 8.0, 8.1, 9, 10 |
| CVE-2020-0397 | A-155092443 | ID | High | 8.0, 8.1, 9, 10 |
| CVE-2020-0399 | A-153993591 | ID | High | 8.0, 8.1, 9, 10 |
Media Framework
| CVE | References | Type | Severity | Updated AOSP versions |
|---|---|---|---|---|
| CVE-2020-0245 | A-152496149 | ID | High | 10 |
| RCE | Critical | 8.0, 8.1, 9 | ||
| CVE-2020-0392 | A-150226608 | EoP | High | 9, 10 |
| CVE-2020-0381 | A-150159669 | ID | High | 8.0, 8.1, 9, 10 |
| CVE-2020-0383 | A-150160279 | ID | High | 8.0, 8.1, 9, 10 |
| CVE-2020-0384 | A-150159906 | ID | High | 8.0, 8.1, 9, 10 |
| CVE-2020-0385 | A-150160041 | ID | High | 8.0, 8.1, 9, 10 |
| CVE-2020-0393 | A-154123412 | ID | High | 9, 10 |
System
| CVE | References | Type | Severity | Updated AOSP versions |
|---|---|---|---|---|
| CVE-2020-0380 | A-146398979 | RCE | Critical | 8.0, 8.1, 9, 10 |
| CVE-2020-0396 | A-155094269 | ID | Critical | 8.0, 8.1, 9, 10 |
| CVE-2020-0386 | A-155650356 | EoP | High | 8.0, 8.1, 9, 10 |
| CVE-2020-0394 | A-155648639 | EoP | High | 8.0, 8.1, 9, 10 |
| CVE-2020-0379 | A-150156492 | ID | High | 8.0, 8.1, 9, 10 |
The users should update Android devices immediately to stay safe. It is also good to have the "automatic update" feature on the devices is activated.
A full description of the improvements and corrections offered by this update is provided on its website Samsung.
Greek
Chinese (Simplified)
English
Greek
Russian