I guess it's time to update your Android device. Ahem... I meant it's time to pray your manufacturer of choice decides to provide an update for you.
"...that could allow a remote attacker using a specially crafted PNG file to execute arbitrary code..."
@fribbledom And apparently affects all version of Android from 8.0 onward.
Also, they're adding SafetyNet logging info into the same commit, so enjoy extra spying! Yay! 😒
@jarlavgrenland @fribbledom Samsung here, but my model (2016 J7 Prime) is only now starting to roll out 8.1 updates after being stuck on 7.0 for a good year or two. The one for my region has yet to get it, so it's gonna be a long, long time before my model gets it -- if ever.
That said, that'd only in terms of official updates. The custom ROM community is much more prudent with this stuff & is very active thanks to being Samsung, so I should get it soon. hehe
@fribbledom Ugh. It's these sorts of issues that made me abandon Android, after using it for a decade. -_-' An utterly broken security model.
@fribbledom I get a feeling that it was probably a good idea to buy my device based on Lineage support lists.
@fribbledom "I use Android because it's open source. Wait..."
@fribbledom Since I don't want an Apple I chose a Google Pixel primarly because it's the best chance to get quick patches ...
@fribbledom totally. Most underrated value of the Android One program is the monthly security updates 🙆🏽♀️
Server run by the main developers of the project It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!