Google has just launched the deployment of Android security update of November 2024. This update addresses a total of 51 vulnerabilities identified within the operating system. Google's monthly newsletter especially highlights two breaches which could be actively exploited by hackers in cyberattacks.
According to the Mountain View giant, “there is evidence” indicating that the two faults “could be subject to limited and targeted exploitation”. Clearly, it is possible that hackers are currently using Android failures to orchestrate attacks on very specific targets. At the moment, there is no evidence that they are used for large-scale attacks.
Also read: More than 200 malicious Android apps have invaded the Play Store in less than a year
A flaw in Qualcomm chips
The first flaw, codenamed CVE-2024-43047, allows an attacker to gain elevated privileges, giving them broad access to the system. The flaw lies in components designed by Qualcomm that are integrated into the Android kernel, the part of the OS that manages all fundamental system operations, including communication between hardware and software.
Note that Qualcomm disclosed the existence of the flaw last month. In fact, vulnerability concerns the Digital Signal Processor (DSP), a type of processor specialized in processing digital signals, such as sounds, images or videos. This processor is found in a multitude of chips from Qualcomm. However, the flaw only affects around ten chips, through the driver FASTRPC (Fast Remote Procedure Call), which allows communication between the main processor (CPU) and the DSP. Concretely, it could lead to spyware infection.
Mirroring the first, the second vulnerability allows an attacker to grant themselves elevated privileges. It affects the Android Framework, system updates via Google Play and the DocumentsUI file management interface. In theory, an attacker could thus read confidential dataor modify files without user permission.
ANSSI’s warning
On paper, these flaws are particularly worrying. The National Information Systems Security Agency is also sounding the alarm in a notice published this Tuesday, November 5, 2024.
Relaying the Google bulletin, the French organization indicates that the “multiple vulnerabilities”identified in the Android code, “allow an attacker to cause remote arbitrary code execution, privilege escalation and breach of data confidentiality”.
How to install Android security update?
All smartphones running Android 12, Android 13, Android 14 and Android 15 are potentially affected. To protect users, Google has deployed a series of fixes. These fixes have been made available to Android manufacturers. All they have to do is integrate the patches into their security updates and deploy them.
We recommend that you update your smartphone as soon as possible. To check if the patch is already available on your phone, go to Android settings. Then go to System, then Software Updates, and System Update. Your device will automatically display the update if it is available. You will need to restart the device to complete the installation.
If your smartphone is outdated and can no longer receive security updates, you are potentially vulnerable to attacks. To ensure your protection, you can invest in a newer terminal or install an alternative distribution of Android.
???? To not miss any news from 01net, follow us on Google News and WhatsApp.
Source :
