Google has released security patches for Android to fix multiple vulnerabilities, including actively exploited Qualcomm bugs. The updates address critical flaws that could lead to memory corruption and remote code execution, with some evidence of targeted exploitation. #Qualcomm #AndroidUpdates
Keypoints
- Google issued security updates to fix critical vulnerabilities in Android and Qualcomm chips.
- Two actively exploited Qualcomm bugs, CVE-2025-21479 and CVE-2025-27038, involve memory corruption in graphics components.
- The vulnerabilities may have been exploited by commercial spyware vendors like Variston and Cy4Gate.
- The patches address high-severity privilege escalation and remote code execution flaws in Android Framework and System components.
- Federal agencies are required to apply the patches by June 24, 2025, as they are listed in the CISA KEV catalog.
Read More: https://thehackernews.com/2025/08/google-fixes-3-android-vulnerabilities.html