Google, a leading technology giant, has once again demonstrated its commitment to user security by releasing its monthly security updates for the Android operating system. This latest release focuses on addressing a total of 46 new software vulnerabilities, ensuring the safety and integrity of Android devices worldwide. Among these vulnerabilities, three have been identified as actively exploited in targeted attacks, warranting immediate attention and action. In this article, we will delve into the details of these vulnerabilities, their potential risks, and the steps taken by Google to mitigate them.

Vulnerability CVE-2023-26083: memory leak flaw affecting the Arm Mali GPU driver for Bifrost, Avalon, and Valhall chips

The first vulnerability, known as CVE-2023-26083, involves an Arm Mali GPU kernel driver information disclosure flaw. This vulnerability was added to the US Cybersecurity and Infrastructure Security Agency’s (CISA) Known Exploited Vulnerabilities catalog in April 2023. According to Google’s Threat Analysis Group (TAG), this vulnerability can be exploited in conjunction with other issues to install commercial spyware. The potential consequences of such an exploit are concerning, as it could compromise user privacy and expose sensitive information.

Vulnerability CVE-2021-29256: The Arm Mali GPU kernel driver allows an unprivileged user to achieve access to freed memory

The second vulnerability, identified as CVE-2021-29256, affects specific versions of the Bifrost and Midgard Arm Mali GPU kernel drivers. This high-severity flaw allows an unprivileged user to gain unauthorized access to sensitive data and escalate privileges to the root. Unauthorized access to sensitive data poses significant risks to user privacy and system security. Google recognizes the severity of this vulnerability and has taken immediate action to address it in the latest security update.

Vulnerability CVE-2023-2136: Critical Integer Overflow in Skia

The third vulnerability, CVE-2023-2136, revolves around a critical integer overflow issue in Skia, an open-source multi-platform 2D graphics library developed by Google. Discovered by Clément Lecigne of Google’s Threat Analysis Group on April 12, 2023, this flaw poses a serious threat to Android devices. If exploited, a remote attacker who has taken over the renderer process can escape the sandbox and execute arbitrary code on the affected devices. The potential for arbitrary code execution raises concerns regarding device integrity and user safety.

Google’s Patch Levels

To address these vulnerabilities and enhance the security of the Android operating system, Google has released two patch levels. The first patch level, released on July 1, focuses on resolving 22 vulnerabilities in the Framework and System components. By addressing these vulnerabilities promptly, Google aims to prevent potential exploits and protect user data from unauthorized access.

Source

• https://thehackernews.com/2023/07/google-releases-android-patch-update.html
• https://securityaffairs.com/148286/mobile-2/android-actively-exploited-flaws-fixed.html

Recently,

Trojanized Super Mario Bros Game Installer