Google's August update fixes multiple security vulnerabilities in Android
Google has released the August Android update that addresses 46 security issues, including a zero-day vulnerability. The vulnerability is labelled (CVE-2024-36971) and exists in the Linux kernel, which is used by Android to manage network routing.
Here's What We Know
A zero-day vulnerability is a flaw that is exploited by attackers before the vendor has time to fix it. It can be subject to targeted attacks. Once successfully exploited, an attacker can execute arbitrary code on unpatched devices without user input.
Google has released two patch batches (2024-08-01 and 2024-08-05) to address all vulnerabilities. The first batch includes fixes for the core issues, while the second batch additionally patches third-party closed source components.
Users are advised to install the update immediately.