Google opublikowało listopadowy biuletyn bezpieczeństwa systemu Android, w którym zamieszczono poprawki do 46 podatności tego systemu, w tym 10 jest krytycznych.

CERT PSE zachęca do zapoznania się z grudniowym biuletynem bezpieczeństwa Google Android i stosowanie aktualizacji dostarczanych przez poszczególnych producentów urządzeń.

CVE

Severity

Updated AOSP versions

Framework

CVE-2020-0099

High

8.0, 8.1, 9, 10

CVE-2020-0294

High

8.0, 8.1, 9, 10

CVE-2020-0440

High

11

CVE-2020-0459

High

8.0, 8.1, 9, 10

CVE-2020-0464

High

10

CVE-2020-0467

High

8.1, 9, 10, 11

CVE-2020-0468

High

10, 11

CVE-2020-0469

High

11

Media Framework

CVE-2020-0458

Critical

8.0, 8.1, 9, 10

CVE-2020-0470

High

10, 11

System

CVE-2020-0460

High

11

CVE-2020-0463

High

8.0, 8.1, 9, 10, 11

CVE-2020-15802

High

8.0, 8.1, 9, 10, 11



CVE

Severity

Component

Kernel components

CVE-2020-0444

High

Kernel Audit System

CVE-2020-0465

High

Kernel

CVE-2020-0466

High

I/O Subsystem

Broadcom components

CVE-2020-0016

High

Broadcom middleware

CVE-2020-0019

High

Broadcom middleware

MediaTek components

CVE-2020-0455

High

vcu

CVE-2020-0456

High

vcu

CVE-2020-0457

High

vcu

Qualcomm components

CVE-2020-11225

Critical

WLAN

CVE-2020-11146

High

Kernel

CVE-2020-11167

High

Bluetooth

CVE-2020-11185

High

WLAN

CVE-2020-11217

High

Audio

Qualcomm closed-source components

CVE-2020-3685

Critical

Closed-source component

CVE-2020-3686

Critical

Closed-source component

CVE-2020-3691

Critical

Closed-source component

CVE-2020-11136

Critical

Closed-source component

CVE-2020-11137

Critical

Closed-source component

CVE-2020-11138

Critical

Closed-source component

CVE-2020-11140

Critical

Closed-source component

CVE-2020-11143

Critical

Closed-source component

CVE-2020-11119

High

Closed-source component

CVE-2020-11139

High

Closed-source component

CVE-2020-11144

High

Closed-source component

CVE-2020-11145

High

Closed-source component

CVE-2020-11179

High

Closed-source component

CVE-2020-11197

High

Closed-source component

CVE-2020-11200

High

Closed-source component

CVE-2020-11212

High

Closed-source component

CVE-2020-11213

High

Closed-source component

CVE-2020-11214

High

Closed-source component

CVE-2020-11215

High

Closed-source component

CVE-2020-11216

High

Closed-source component