Android Phone can have hacker for seeing to a PNG Image
Google said that " the most severe of these issues is a critical security vulnerability in Framework that could allow a remote attacker using a specially crafted PNG file to execute arbitrary code within the context of privileged process."
The vulnerabilities, when to identified such as CVE-2019-1986, CVE-2019-1987 and CVE-2019-1988, have been patched in Android Open Source Project (AOSP) by Google as part of its February Android Security Updates.
Although Google engineers do not explain the detail of technical solution yet about the vulnerabilities fixing "heap buffer overflow flaw" and " errors in SkPngCode" and bug in components that render PNG images.
After Google engineers said that it noted Android partners of all vulnerabilities a month before publication, adding that " source code patches for these issues will be released to Android Open Source Project repository in the next 48 hours."
No comments:
Post a Comment