February Security Update Released for Android

Nick Felker
Androidmarshmallowsecurityfebruarypatch

Every month Google has been releasing a patch to their operating system focused around fixing security issues which have been reported either internally or from outside organizations. As the month has just arrived, it is time for another security patch.

These fixes, which are still considered Android 6.0.1, will be rolling out to Nexus Player users in the coming weeks, although the are available now for those who would like to flash the OS sooner.

Some of the most critical fixes come from remote execution possibilities in the mediaserver and Broadcom Wi-Fi driver. If a media file or wireless packet is designed in a particular way, it could cause arbitrary code to be run. Not only are remote execution bugs significant, but as these two components are commonly used throughout the operating system, there’s plenty of potential avenues for this bug to be exploited.

There are a few fixes for elevation of privilege in some hardware drivers and background services. These exploits could allow a local application to run arbitrary code by getting around the normal sandbox protections that would come with Android apps.

Nick Felker

Nick Felker is a student Electrical & Computer Engineering student at Rowan University (C/O 2017) and the student IEEE webmaster. When he's not studying, he is a software developer for the web and Android (Felker Tech). He has several open source projects on GitHub Devices: Moto G-2013 Moto G-2015, Moto 360, Google ADT-1, Nexus 7-2013 (x2), Lenovo Laptop, Custom Desktop. Although he was an intern at Google, the content of this blog is entirely independent and his own thoughts.

More Posts - Website

Follow Me: