[ad_1]
2:51 p.m.
Friday, February 08, 2019
Books – Assem Al-Ansari:
Google has revealed a new way to enter the operating system of smart phones "Android", using harmful files (PNG).
"Three critical vulnerabilities recently discovered in the operating system infrastructure could allow a remote attacker to run code on an Android device with the help of a specially-crafted PNG file." designed, "said the company.
According to the Arabic technical information portal, "Google" to fill the gaps related to the modernization of the system, "Android", but it can run out several months before many manufacturers of external devices deploy security patches on their own phones. "Android" update of February.
Users should be cautious when opening an image file on their smartphone. Indeed, a malicious PNG file received via the chat or e-mail application may trigger a malicious program on the device with high-level privileges.
The vulnerabilities affect millions of devices running the latest versions of the operating system, from "Android Noga 7.0" to the current version of "Android Bay 9.0".
Although Google engineers have not disclosed technical details illustrating the weaknesses, the updates indicate a buffer overflow vulnerability, SkPngCodec errors, and errors in some components displaying PNG images.
The company confirmed that it had not reported any abuse of the weaknesses listed in the February safety bulletin.
A month before its publication, Google had announced to its Android operating system partners all the weaknesses, adding that the corrections made to the source code of these problems would be published in the Open Project warehouse Android source (AOSP) in the next 48 hours.
Source link
