In the month of February 2019, Google started to bring out different fresh security patches for its operating system Android. Google ended up fixing a lot of different flaws in this update and along with it, Google also fixed the vulnerability, which basically allowed all the hackers to hack different phones running on the Android operating system.
According to the security vulnerability, the hackers were successfully able to hide different codes in all the images which were in the PNG format. Once users installed the image in their Android mobile phone, the hidden code would start working on its own. This helped hackers get a different privilege over all Android smartphones. This means that if you have downloaded an image that is sent by your friend which is in PNG format, then this image could end up leaving your phone vulnerable to different hackers.
Google has come out and said that this critical security vulnerability is there in the Android Framework. They also said:
“It could allow a remote attacker using a specially crafted PNG file to execute arbitrary code within the context of a privileged process.”
This has been seen on Android Operating System Nougat which is the Android 7.0 and other higher versions of Android. The problem is there in the Android 9.0 which is popularly known as Android Pie. The main impact is felt in three of the Android Frameworks which are CVE 2019 1988, CVE 2019 1987, and CVE 2019 1986.
Google has been very much prompt in taking its action and has already released the fix with the release of some code patches to all the Android Open Source Project which is also known as AOSP.
The fix has already been released by Google, but still, there are a lot of devices which are available in the market which are vulnerable and at risk of being attacked. The security patch from Google was only able to fix a few of the devices.
Google made sure that they were able to fix their Pixel mobile phones with this latest release of codes. According to the California based company Google:
“We have had no reports where the vulnerability has been used to target Android users.”
This comment from Google has made a lot of people using Android feel relieved about the situation.