New Update Android Security Update for October 2023 - Fixes 2 Exploited Vulnerabilities

silversurfer

silversurfer

Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
10,178
Google on Monday announced the release of patches for 51 vulnerabilities as part of the October 2023 security updates for Android, including fixes for two zero-day flaws exploited in malicious attacks.

The first of the exploited issues is CVE-2023-4863 (CVSS score of 8.8), a heap buffer overflow in the Libwebp library that leads to an out-of-bounds memory write and remote code execution (RCE).

In the Android security bulletin for October 2023, Google explains that the vulnerability impacts the System component and assesses it with a ‘critical’ severity rating.

While the tech giant does not provide specific information on the observed in-the-wild exploitation, the issue was identified and reported by Apple and the Citizen Lab group at The University of Torontoʼs Munk School, which often details attacks linked to commercial spyware vendors. The flaw had been exploited to deliver spyware to iPhones.
Click to expand...
www.securityweek.com

Android's October 2023 Security Updates Patch Two Exploited Vulnerabilities

The October 2023 security update for Android patches two vulnerabilities exploited in attacks, both likely linked to spyware vendors.
www.securityweek.com www.securityweek.com

Android Security Bulletin—October 2023 | Android Open Source Project

source.android.com source.android.com
 
  • Like
  • +Reputation
Reactions: CyberTech, Nevi, Morro and 4 others

Similar threads

silversurfer
    • Like
    • +Reputation
New Update Android Security Update for November 2023 - Fixes 37 Vulnerabilities
Replies
1
Views
511
Android & WearOS
ForgottenSeer 103564
F
silversurfer
    • +Reputation
    • Like
New Update Android Security Updates for July 2023 - Patch for 3 Exploited Vulnerabilities
Replies
1
Views
610
Android & WearOS
Sandbox Breaker
Sandbox Breaker
silversurfer
    • Like
    • Thanks
    • +Reputation
New Update Android Security Update for January 2024 - Fixes 58 Vulnerabilities
Replies
2
Views
448
Android & WearOS
Dave Russo
Dave Russo

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top