Dwelling › Cellular Safety

Over 75 Vulnerabilities Patched in Android With December 2022 Safety Updates

By Ionut Arghire on December 07, 2022

Tweet

Google this week introduced the December 2022 Android updates with patches for over 75 vulnerabilities, together with a number of essential distant code execution (RCE) flaws.

Probably the most extreme of the RCE bugs is CVE-2022-20411, a difficulty in Android’s System part that may very well be exploited over Bluetooth.

“Probably the most extreme of those points is a essential safety vulnerability within the System part that might result in distant code execution over Bluetooth with no further execution privileges wanted,” Google explains in its advisory.

Two different critical-severity RCE flaws (CVE-2022-20472 and CVE-2022-20473) have been resolved within the Framework part. Google additionally patched a essential data disclosure (CVE-2022-20498) within the System part.

All 4 points have been resolved as a part of the 2022-12-01 safety patch degree, which addresses a complete of 41 vulnerabilities in Android Runtime (1), Framework (20), Media framework (1), and System (19).

Many of the addressed safety defects are high-severity flaws, with escalation of privilege being the commonest kind. Data disclosure and denial-of-service (DoS) points have been additionally resolved.

An extra 35 high-severity vulnerabilities have been resolved as a part of the 2022-12-05 safety patch degree, in Kernel, Creativeness Applied sciences, MediaTek, Unisoc, and Qualcomm parts.

Gadgets utilizing a safety patch degree of 2022-12-05 or newer embrace patches for all of the vulnerabilities above, in addition to for these resolved with earlier Android safety updates.

A complete of 151 Pixel-specific vulnerabilities have been resolved this month, Google introduced. Many of the bugs are medium-severity escalation of privilege points, with quite a few data disclosure bugs addressed as effectively.

Pixel gadgets working a safety patch degree of 2022-12-05 embrace patches for all vulnerabilities described within the December 2022 Android safety bulletin, in addition to for the 151 bugs talked about above.

Google’s December 2022 Android Automotive OS (AAOS) replace bulletin describes eight AAOS vulnerabilities which have been resolved alongside the issues addressed with a safety patch degree of 2022-12-05 from the December 2022 Android safety bulletin.

Associated: Google Patches Excessive-Severity Privilege Escalation Vulnerabilities in Android

Associated: Android Safety Updates Patch Crucial Vulnerabilities

Associated: Google Patches Crucial Vulnerabilities in Pixel Telephones

Get the Every day Briefing

• Most Latest
• Most Learn

• Over 75 Vulnerabilities Patched in Android With December 2022 Safety Updates
• Three Methods to Enhance Protection Readiness Utilizing MITRE D3FEND
• Iran Arrests Information Company Deputy After Reported Cyberattack
• Brazilian PAM Firm Senhasegura Raises $13 Million
• Rackspace Confirms Ransomware Assault as It Tries to Decide If Knowledge Was Stolen
• ‘Scattered Spider’ Cybercrime Group Targets Cellular Carriers by way of Telecom, BPO Corporations
• A number of Code Execution Vulnerabilities Patched in Sophos Firewall
• On-line Occasion At this time: Safety Operations Summit
• Netgear Neutralizes Pwn2Own Exploits With Final-Minute Nighthawk Router Patches
• Amnesty Worldwide Canada Says It Was Hacked by Beijing

On the lookout for Malware in All of the Incorrect Locations?

First Step For The Web’s subsequent 25 years: Including Safety to the DNS

Tattle Story: What Your Pc Says About You

Be in a Place to Act By way of Cyber Situational Consciousness

Report Exhibits Closely Regulated Industries Letting Social Networking Apps Run Rampant

2010, A Nice Yr To Be a Scammer.

Do not Let DNS be Your Single Level of Failure

The right way to Determine Malware in a Blink

Defining and Debating Cyber Warfare

The 5 A’s that Make Cybercrime so Engaging

The right way to Defend In opposition to DDoS Assaults

Safety Budgets Not in Line with Threats

Anycast – Three Causes Why Your DNS Community Ought to Use It

The Evolution of the Prolonged Enterprise: Safety Methods for Ahead Considering Organizations

Utilizing DNS Throughout the Prolonged Enterprise: It’s Dangerous Enterprise

Orbit Brain

http://orbitbrain.com/

Orbit Brain is the senior science writer and technology expert. Our aim provides the best information about technology and web development designing SEO graphics designing video animation tutorials and how to use software easy ways
and much more. Like Best Service Latest Technology, Information Technology, Personal Tech Blogs, Technology Blog Topics, Technology Blogs For Students, Futurism Blog.