June Security Patch- What all is patched

Abhinandan Jain

June is here and so is the June Security Patch for Android devices.

The June Security Patch has been rolled out by Google and it is up to the mobile manufacturers to ship it to their customers. The patch has been released to the Android Open Source Project also.

Like every other monthly patch fix, this patch also contains fixes for many critical/ severe and medium vulnerabilities.

The severity is determined from the effect, the exploit of that vulnerability would have caused on an affected device, after assuming that service and platform mitigations have been successfully bypassed or turned off.

Framework

Android Framework

A severe vulnerability, also the most severe to be patched in this version, would have enabled any malicious local application to bypass user interaction requirements and gain additional permissions.

Media Framework

Another very one which would have enabled any remote attacker to execute, within the context of a privileged process, any specially crafted file and execute arbitrary code.

System

It would have enabled the execution of a specially crafted file containing arbitrary code within the context of a verified privileged process, and it could have been easily enabled by a remote attacker.

Components

Kernel components

Another severe vulnerability which would have enabled a malicious application on the local device to execute arbitrary code, once again in the context of a privileged process.

LG Components

Would have enabled any local attacker to bypass user interaction and again additional permission access.

MediaTek components

A remote attacker would have executed arbitrary code within the context of a TCB by exploiting this vulnerability.

NVIDIA Components

It would have enabled any malicious local application within the context of a privileged process execute arbitrary code.

Qualcomm components

A vulnerability affecting the Qualcomm components at large would have also enabled a local attacker to gain additional permissions by bypassing user interaction requirements.

The patch would be gradually rolled out by manufacturers to their devices over the coming days. However, don’t expect the availability of a wide range of devices. Keep following us, as we inform you of the devices as they get the Security Patch.

                                                                                                                               Source: Android Security Bulletin

You may also like:

Some Non-Pixel Devices Getting Android P Beta Update
Latest Official SP Flash Tool v5.1816 Is Now Available
LG G6 Oreo Update rollout begins
LineageOS 16: Supported Devices and Release Date
Moto Z Gets Android 9.0 (P) Unofficially
New update rolling out for Nokia 7 Plus with a bunch of features

 

Abhinandan Jain

19- year old tech enthusiast. Covers leaks, news, software updates related to some of the biggest and most prominent OEM's in the Android space.

Leave a Reply

Your email address will not be published. Required fields are marked *