Google patches remote execution flaws in Android

Google has released 16 patches for Android, including one for a critical remote execution vulnerability in the operating system’s mediaserver.

The company’s Nexus devices will receive an over-the-air update. Google’s partners were notified no later than Feb. 1 of the fixes, giving them more than a month to prepare.

The vulnerabilities in mediaserver could be exploited if malicious content is displayed or played on a device, such as an MMS, email, or if the browser plays some type of media, Google’s advisory said.

A string of vulnerabilities has been found in media playback software since last year, most notably the Stagefright bug. 

To read this article in full or to leave a comment, please click here