- Aug 17, 2014
Google published the Android Security Bulletin for April 2023 earlier today. The bulletin lists vulnerabilities that Google has patched. It is divided into two patch levels: the first contains security fixes for Android system and framework, the second hardware-vendor specific security fixes.
The first patch level addresses issues in system and framework. 10 unique vulnerabilities are addressed in Framework; they have a severity rating of high or moderate, and are either elevation of privilege or denial of service vulnerabilities.
Android System is affected by 16 unique vulnerabilities, two of them rated critical, the remaining 16 high. The two critical vulnerabilities allow remote code execution on successful exploits. The vulnerabilities rated high allow elevation of privilege, denial of service and information disclosure attacks. Google addressed issues in Google Play's MediaProvider and Wifi components as well.
The second patch level addresses a total of 41 different security issues in various components. Four of the 41 security issues have received a severity rating of critical, the highest rating. All four affect Qualcomm components. The Android April 2023 security updates address a total of 69 different security issues.
Google published the Android Security Bulletin for April 2023 earlier today, which confirms over 60 vulnerabilities, some of which rated critical.