Google opublikowało kwietniowy biuletyn bezpieczeństwa systemu Android, w którym zamieszczono poprawki do 55 podatności tego systemu, w tym 13 krytyczne.

CVE Severity Updated AOSP versions
Framework
CVE-2020-0080 High 10
CVE-2020-0081 High 8.0, 8.1, 9, 10
CVE-2020-0082 High 10
CVE-2019-2056 High 10
CVE-2019-5018 High 8.0, 8.1, 9, 10
CVE-2019-8457 High 8.0, 8.1, 9, 10
CVE-2019-9936 Moderate 8.0, 8.1, 9, 10
Media framework
CVE-2020-0078 High 9, 10
CVE-2020-0079 High 9, 10
System
CVE-2020-0070 Critical 8.0, 8.1, 9, 10
CVE-2020-0071 Critical 8.0, 8.1, 9, 10
CVE-2020-0072 Critical 8.0, 8.1, 9, 10
CVE-2020-0073 Critical 8.0, 8.1, 9, 10
CVE Severity Component
Kernel components
CVE-2019-19524 High USB input driver
CVE-2019-19532 High USB HID drivers
CVE-2019-19807 High Audio Subsystem
FPC components
CVE-2020-0076 High FPC Iris TZ App
CVE-2020-0075 Moderate FPC Iris TZ App
CVE-2020-0077 Moderate FPC Iris TZ App
Qualcomm components
CVE-2019-14131 Critical WLAN
CVE-2019-14070 High Audio
CVE-2019-14104 High Camera
CVE-2019-14122 High Kernel
CVE-2019-14132 High Video
CVE-2020-3651 High WLAN
Qualcomm closed-source components
CVE-2019-10575 Critical Closed-source component
CVE-2019-10588 Critical Closed-source component
CVE-2019-10609 Critical Closed-source component
CVE-2019-14110 Critical Closed-source component
CVE-2019-14111 Critical Closed-source component
CVE-2019-14112 Critical Closed-source component
CVE-2019-14113 Critical Closed-source component
CVE-2019-14114 Critical Closed-source component
CVE-2019-10483 High Closed-source component
CVE-2019-10551 High Closed-source component
CVE-2019-10589 High Closed-source component
CVE-2019-10608 High Closed-source component
CVE-2019-10610 High Closed-source component
CVE-2019-14001 High Closed-source component
CVE-2019-14007 High Closed-source component
CVE-2019-14009 High Closed-source component
CVE-2019-14011 High Closed-source component
CVE-2019-14012 High Closed-source component
CVE-2019-14018 High Closed-source component
CVE-2019-14019 High Closed-source component
CVE-2019-14020 High Closed-source component
CVE-2019-14021 High Closed-source component
CVE-2019-14022 High Closed-source component
CVE-2019-14033 High Closed-source component
CVE-2019-14075 High Closed-source component
CVE-2019-14105 High Closed-source component
CVE-2019-14127 High Closed-source component
CVE-2019-14134 High Closed-source component
CVE-2019-14135 High Closed-source component
CVE-2020-3651 High Closed-source component

CERT PSE zachęca do zapoznania się z kwietniowym biuletynem bezpieczeństwa Google Android i stosowanie aktualizacji dostarczanych przez poszczególnych producentów urządzeń.