Google Quashes New Android Kernel Exploit with Urgent Patch

Google recently released a patch to address a high-severity Android kernel security vulnerability allegedly exploited in attacks in the wild.

Highly Severe Android Kernel Flaw Discovered

The flaw, tracked as CVE-2024-36971, with a CVSS score of 7.8 and classified as highly severe, is a remote code execution vulnerability impacting the kernel.

It occurred when the system incorrectly handled clearing certain data caches, potentially leading to a use-after-free error, where the system could try to use memory that had already been freed.

The shortcoming became apparent during specific network operations, particularly with UDP sockets. Security researcher Clement Lecigne from Google’s Threat Analysis Group (TAG) identified and reported it, and it has now been resolved, preventing exploits.

Vulnerability Likely Exploited in the Wild

According to Google’s security advisory, “There are indications that CVE-2024-36971 may be under limited, targeted exploitation.”

The company offered no additional details on the cyberattacks exploiting the vulnerability or the identities of the people behind the malicious activities spotted in the wild. It’s also not yet clear if the vulnerability affects Pixel devices.

Security experts suspect commercial spyware vendors are exploiting the flaw is to compromise Android devices in highly targeted malicious campaigns.

Installing Latest Security Updates is Crucial

Google urges users to apply the latest security updates on their devices, highlighting that improvements in newer versions of the Android operating system can thwart threat actors’ attempts to exploit various issues.

The company adds that its Google Play Protect, a mechanism enabled by default on devices with Google Mobile Services, can warn users of potentially harmful apps, especially those installed outside of Google Play.

The Role of Specialized Security Software

Using specialized software such as Bitdefender Mobile Security for Android can significantly boost your Android device’s security against various threats. It comes with advanced features, including app anomaly detection, a malware scanner, on-demand and on-install scanning modules, scam alerts, web protection technology, and anti-theft.