Thursday, January 21, 22:17
Home security Samsung fixes critical flaws in Android mobile devices

Samsung fixes critical flaws in Android mobile devices

This week, Samsung began releasing November security updates on Android mobile devices to fix critical security vulnerabilities in the operating system and improve overall device capabilities.

This comes after Android released the November 2020 security newsletter, which includes patches for critical vulnerabilities affecting the latest devices.

Samsung

As noted by BleepingComputer, Samsung Galaxy devices are automatically updated with the updates released on November 9, 2020.

These updates include many improvements related to Wi-Fi connectivity, the camera, and some very important security fixes.

Almost every vulnerability encountered by this update is either "High" or "Critical", making this update necessary for Android users, so Appliances to remain protected.

Android

RCE, escalation of privileges and DoS

There is a very serious vulnerability, CVE-2020-0409, which has been fixed by this update.

The problem could allow a locally run application to bypass user interaction requirements and obtain illegal add-ons royalties. The commit repair shown below fixes CVE-2020-0409.

Android

Meanwhile, one of the most critical vulnerabilities CVE-2020-0451 is an overflow in the Media Framework component and allows both remote code execution as well as the revelation information.

"The most serious vulnerability in the [Media Framework] section could allow a remote intruder which uses a specially crafted file to execute arbitrary code within a privileged procedure", Explains the Android security newsletter for November 2020.

Most vulnerabilities in the Framework itself concerned attackers who could cause a "permanent" DoS status through specially designed messages.

Some bugs are still exploitable

On selected Samsung Galaxy devices, the updates launched this week have the most recent "security patch" at "2020-11-01".

This means that the high and critical severity vulnerabilities must corrected from the “safety newsletter 2020-11-05” could still be exploited.

Users are advised to immediately update their Android devices to protect themselves from them errors and ensure that Appliances their "auto-update" settings are enabled.

A full description of the optimizations offered by this update is provided at site of Samsung.

Source of information: bleepingcomputer.com

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Teo Ehc
Teo Ehchttps://www.secnews.gr
Be the limited edition.

LIVE NEWS

Mac: How to see which model you have and when it was released

When you need support for your Mac - or want to install some kind of upgrade - you usually need to know the exact ...
00:02:35

Bill Gates: Will he work with Biden on COVID-19 / climate change?

Microsoft co-founder Bill Gates said on Twitter that he is looking forward to working with the new US President, Joe Biden, and ...

What are the rumors circulating about the iPhone 13?

Apple iPhone 13 will have a redesigned Face ID system that will have a smaller notch at the top of the screen, ...

Biden: How was the political transition in the US captured on social media?

As Joe Biden was sworn in as President of the United States, this important political transition was captured on popular social media. On January 20, ...

CentOS ceases to be supported but RHEL is offered for free

Last month, Red Hat caused a great deal of concern in the Linux world when it announced the discontinuation of CentOS Linux.

Microsoft Office 365 employee passwords leaked online!

A new large-scale phishing campaign targeting global organizations has been found to bypass Microsoft Office 365 Advanced Threat Protection (ATP) and ...

COSMOTE and Microsoft provide new cloud solutions for businesses

COSMOTE and Microsoft expand their cooperation, offering even more advanced and high quality cloud solutions, in large and small ...

Cyber ​​attacks in Eastern Europe are on the rise!

The cyber-attacks that have taken place in many US government agencies and companies in recent months have caused concern in the developing countries of ...

Tesla reduces the prices of the Model 3 in Europe

Tesla has reduced the prices of the Model 3 in many European markets, which reductions could be partly linked ...

iOS, Android, XBox users in the crosshairs of a new malvertising campaign

Recently a new malvertising campaign was discovered that targets users of mobile and other connected devices and uses effective ...