It’s a new month, which means that it’s time for Google to post a new Android Security Bulletin.
The Android Security Bulletin for May 2016 highlights 25 vulnerabilities that’ve been addressed with the latest security update, including six that are labeled as “Critical.” There are vulnerabilities that relate to Qualcomm TrustZone, Qualcomm Wi-Fi Driver, NVIDIA Video Driver, Qualcomm MDP Driver, and more.
The good news is that Google has received no reports of customer exploitation or abuse of these 25 vulnerabilities.
Google notified its partners of these 25 vulnerabilities on April 4 or earlier. Source code patches for the issues will be posted to the Android Open Source Project (AOSP) repository within the next 48 hours, and Google will soon push security updates to its Nexus devices.
Way back in August 2015, Google committed to pushing monthly Android security updates to Nexus devices. As part of that effort, it shares info on new vulnerabilities with other Android device makers in order to help improve the security of all devices on its platform. It’s good to see Google continuing to improve Android security as we go through 2016
