Google opublikowało wrześniowy biuletyn bezpieczeństwa systemu Android, w którym zamieszczono poprawki dla 51 podatności tego systemu, w tym 3 są krytyczne.
CERT PSE zachęca do zapoznania się z październikowym biuletynem bezpieczeństwa Google Android i stosowanie aktualizacji dostarczanych przez poszczególnych producentów urządzeń.
|
CVE |
Severity |
Updated AOSP versions |
|
Android runtime |
||
|
CVE-2021-0703 |
High |
11 |
|
Framework |
||
|
CVE-2021-0652 |
High |
8.1, 9, 10, 11 |
|
CVE-2021-0705 |
High |
10, 11 |
|
CVE-2021-0708 |
High |
8.1, 9, 10, 11 |
|
CVE-2020-15358 |
High |
11 |
|
CVE-2021-0702 |
High |
11 |
|
CVE-2021-0651 |
High |
9, 10, 11 |
|
Media Framework |
||
|
CVE-2021-0483 |
High |
10, 11 |
|
System |
||
|
CVE-2021-0643 |
High |
10, 11 |
|
CVE-2021-0706 |
High |
8.1, 9, 10, 11 |
|
CVE-2021-0870 |
Critical |
8.1, 9, 10, 11 |
|
CVE |
Severity |
Component |
|
Kernel components |
||
|
CVE-2020-29368 |
High |
Kernel Memory Management |
|
CVE-2020-29660 |
High |
TTY |
|
CVE-2021-0707 |
High |
dma-buf |
|
CVE-2020-10768 |
High |
i86 Spectre v2 protections |
|
CVE-2021-29647 |
High |
Qualcomm IPC Router support |
|
Telecommunication |
||
|
CVE-2021-27666 |
High |
Modem |
|
Qualcomm components |
||
|
CVE-2020-11264 |
Critical |
WLAN |
|
CVE-2020-11301 |
Critical |
WLAN |
|
CVE-2020-24587 |
High |
WLAN |
|
CVE-2020-24588 |
High |
WLAN |
|
CVE-2020-26139 |
High |
WLAN |
|
CVE-2020-26141 |
High |
WLAN |
|
CVE-2020-26145 |
High |
WLAN |
|
CVE-2020-26146 |
High |
WLAN |
|
CVE-2021-1977 |
High |
WLAN |
|
CVE-2021-1980 |
High |
WLAN |
|
CVE-2021-30305 |
High |
Display |
|
CVE-2021-30306 |
High |
Audio |
|
CVE-2021-30312 |
High |
WLAN |
|
Qualcomm closed-source components |
||
|
CVE-2020-11303 |
High |
Closed-source component |
|
CVE-2020-26140 |
High |
Closed-source component |
|
CVE-2020-26147 |
High |
Closed-source component |
|
CVE-2021-1913 |
High |
Closed-source component |
|
CVE-2021-1917 |
High |
Closed-source component |
|
CVE-2021-1932 |
High |
Closed-source component |
|
CVE-2021-1936 |
High |
Closed-source component |
|
CVE-2021-1949 |
High |
Closed-source component |
|
CVE-2021-1959 |
High |
Closed-source component |
|
CVE-2021-1983 |
High |
Closed-source component |
|
CVE-2021-1984 |
High |
Closed-source component |
|
CVE-2021-1985 |
High |
Closed-source component |
|
CVE-2021-30256 |
High |
Closed-source component |
|
CVE-2021-30257 |
High |
Closed-source component |
|
CVE-2021-30258 |
High |
Closed-source component |
|
CVE-2021-30288 |
High |
Closed-source component |
|
CVE-2021-30291 |
High |
Closed-source component |
|
CVE-2021-30292 |
High |
Closed-source component |
|
CVE-2021-30297 |
High |
Closed-source component |
|
CVE-2021-30302 |
High |
Closed-source component |
|
CVE-2021-30310 |
High |
Closed-source component |
+48 22242 1996
+48 571 207 996
cert@pse.pl 
klucz publiczny