Google publikuje aktualizację zabezpieczeń systemu Android 04/2019

utworzone przez | kwi 2, 2019 | Aktualizacje

Google opublikowało kwietniowy biuletyn bezpieczeństwa systemu Android, w którym zamieszczono poprawki do 89 podatności tego systemu, w tym 10 krytycznych.

CVE Severity Updated AOSP versions
Framework
CVE-2019-2026 High 8.0
Media framework
CVE-2019-2027 Critical 7.0, 7.1.1, 7.1.2, 8.0, 8.1, 9
CVE-2019-2028 Critical 7.0, 7.1.1, 7.1.2, 8.0, 8.1, 9
System
CVE-2019-2030 High 9
CVE-2019-2031 High 7.0, 7.1.1, 7.1.2, 8.0, 8.1, 9
CVE-2019-2033 High 9
CVE-2019-2034 High 7.0, 7.1.1, 7.1.2, 8.0, 8.1, 9
CVE-2019-2035 High 7.0, 7.1.1, 7.1.2, 8.0, 8.1, 9
CVE-2019-2038 High 7.0, 7.1.1, 7.1.2, 8.0, 8.1, 9
CVE-2019-2039 High 7.0, 7.1.1, 7.1.2, 8.0, 8.1, 9
CVE-2019-2040 High 9
CVE-2019-2029 Critical 7.0, 7.1.1, 7.1.2, 8.0, 8.1, 9
CVE-2019-2032 High 8.0, 8.1, 9
CVE-2019-2041 High 8.1, 9
CVE-2019-2037 High 7.0, 7.1.1, 7.1.2, 8.0, 8.1, 9
Qualcomm components
CVE Severity Component
CVE-2018-11940 Critical WLAN HOST
CVE-2017-17772 High WLAN HOST
CVE-2018-11294 High WLAN HOST
CVE-2018-5855 High WLAN HOST
CVE-2018-11299 High WLAN HOST
CVE-2018-11826 High WLAN HOST
CVE-2018-11827 High WLAN HOST
CVE-2018-11840 High WLAN HOST
CVE-2018-11851 High WLAN HOST
CVE-2018-11860 High WLAN HOST
CVE-2018-11868 High WLAN HOST
CVE-2018-11869 High WLAN HOST
CVE-2018-11878 High WLAN HOST
CVE-2018-11889 High WLAN HOST
CVE-2018-11891 High WLAN HOST
CVE-2018-11894 High WLAN HOST
CVE-2018-11895 High WLAN HOST
CVE-2018-11897 High WLAN HOST
CVE-2018-11902 High WLAN HOST
CVE-2018-11904 High WLAN HOST
CVE-2018-11905 High WLAN HOST
CVE-2018-11923 High WLAN HOST
CVE-2018-11924 High WLAN HOST
CVE-2018-11925 High WLAN HOST
CVE-2018-11927 High WLAN HOST
CVE-2018-11930 High WLAN HOST
CVE-2018-11937 High WLAN HOST
CVE-2018-11949 High WLAN HOST
CVE-2018-11953 High WLAN HOST
CVE-2018-13920 High Kernel
Qualcomm closed-source components
CVE-2018-11271 Critical Closed-source component
CVE-2018-11976 Critical Closed-source component
CVE-2018-12004 Critical Closed-source component
CVE-2018-13886 Critical Closed-source component
CVE-2018-13887 Critical Closed-source component
CVE-2019-2250 Critical Closed-source component
CVE-2018-11291 High Closed-source component
CVE-2018-11821 High Closed-source component
CVE-2018-11822 High Closed-source component
CVE-2018-11828 High Closed-source component
CVE-2018-11849 High Closed-source component
CVE-2018-11850 High Closed-source component
CVE-2018-11853 High Closed-source component
CVE-2018-11854 High Closed-source component
CVE-2018-11856 High Closed-source component
CVE-2018-11859 High Closed-source component
CVE-2018-11861 High Closed-source component
CVE-2018-11862 High Closed-source component
CVE-2018-11867 High Closed-source component
CVE-2018-11870 High Closed-source component
CVE-2018-11871 High Closed-source component
CVE-2018-11872 High Closed-source component
CVE-2018-11873 High Closed-source component
CVE-2018-11874 High Closed-source component
CVE-2018-11875 High Closed-source component
CVE-2018-11876 High Closed-source component
CVE-2018-11877 High Closed-source component
CVE-2018-11879 High Closed-source component
CVE-2018-11880 High Closed-source component
CVE-2018-11882 High Closed-source component
CVE-2018-11884 High Closed-source component
CVE-2018-11928 High Closed-source component
CVE-2018-11936 High Closed-source component
CVE-2018-11967 High Closed-source component
CVE-2018-11967 High Closed-source component
CVE-2018-11968 High Closed-source component
CVE-2018-12005 High Closed-source component
CVE-2018-12012 High Closed-source component
CVE-2018-12013 High Closed-source component
CVE-2018-13885 High Closed-source component
CVE-2018-13895 High Closed-source component
CVE-2018-13925 High Closed-source component
CVE-2019-2244 High Closed-source component
CVE-2019-2245 High Closed-source component

CERT PSE zachęca do zapoznania się ze kwietniowym biuletynem bezpieczeństwa Google Android i stosowanie aktualizacji dostarczanych przez poszczególnych producentów urządzeń.