• Millions of Android devices at risk of attack due to Arm Mali GPU driver flaws

    1 day ago - By TechRadar

    Millions of Android devices are at risk of cyberattacks due to the slow and cumbersome patching process plaguing the decentralized mobile platform. Cybersecurity researchers from Google's Project Zero team discovered a total of five vulnerabilities affecting the Arm Mali GPU driver. The flaws have been grouped under two identifiers - CVE-2022-33917, and CVE-202236449, and they allow threat actors a myriad of options, from accessing free memory sections, to writing outside of buffer bounds. They've all gotten a severity score of “medium”.
    More OEMs, slower patches
    The flaws have since been...
    Read more ...

     

  • Google says Google and other Android manufacturers haven't patched security flaws

    Google says Google and other Android manufacturers haven't patched security flaws

    1 day ago - By Engadget

    Google has disclosed several security flaws for phones that have Mali GPUs, such as those with Exynos chipsets. The company's Project Zero team says it flagged the problems to ARM back in the summer. ARM resolved the issues on its end in July and August. However, smartphone manufacturers including Samsung, Xiaomi, Oppo and Google itself hadn't deployed patches to fix the vulnerabilities as of earlier this week, Project Zero said. Researchers identified five new issues in June and July and promptly flagged them to ARM. "One of these issues led to kernel memory corruption, one led to...
    Read more ...