< img src = "/uploads/blogs/54/41/IB-FRJGP9C9N_0D56DB17.jpg" Alt = "Google eliminated critical vulnerability in Android used by hackers"/> ~ < p > Google released a blond safety update for Android, eliminating 62 vulnerability, including & mdash; two critically dangerous & laquo; zero day & raquo; (0-day) that was actively operated by hackers during purposeful attacks.
< p > One of the most dangerous was the vulnerability of CV-2024-53197 & mdash; The problem of raising privileges in USB-Audio driver for ALSA devices in Linux kernel. According to researchers, this break was part of a complex chain of expression developed by the Israeli company Cellebrice and used by the Serbian authorities to access blocked Android devices during investigations.
~ ~ ~ ~ > < P > Earlier within the same chain, other vulnerability & mdash; In the class of USB devices (CV-2024-53104, closed in February) and in HID (CV-2024-50302, in March). These findings were the result of the investigation of Security Lab Specialists Amnesty International, who analyzed devices unlocked by Serbian police.
< P > Google noted that they were informed in advance of the problem and provided to the manufacturers on January 18 as part of a special message for OEM partners.
~ ~ < p > second critical vulnerability & laquo; zero day & raquo;, closed in this update (Cve-2024-53150), concerned the leakage Pam & rsquo; yati.