Bad Google! That is not how you patch

Subject: General Tech | August 14, 2015 - 12:56 PM |
Tagged: google, stagefright, Android, security

So it would seem that the patch which Google rolled out and carriers have been pushing OTA is not going to be the last that we hear of Stagefright as the patch is not all that effective.  Stagefright is a vulnerability present on all 950 million devices running Android 2.2 to 5.1 and allows certain MMS to be able to execute code on your mobile device.  The recently released patch does not completely ameliorate this vulnerability, an MMS can still cause the library to crash, most likely just preventing you from using the application but possibly allowing other attacks to occur. 

Also of note is the monthly Android patches that Google is providing to various phone manufacturers who are supposed to be pushing them out.  As many Android users will have noticed, up to and including the staff at The Register, you may not have seen the flawed patch yet, let alone the update for the patch.

View Full Size

"Google's security update to fix the Stagefright vulnerability in millions of Android smartphones is buggy – and a new patch is needed.

Here is some more Tech News from around the web:

Tech Talk


Source: The Register

Video News

August 14, 2015 | 01:36 PM - Posted by -- (not verified)

FOIST...FUD...g$$gle.. 1984...standard and oil...NSA
thats it im installing linux on my phone now.

August 14, 2015 | 02:38 PM - Posted by Master Chen (not verified)

Um, if my memory is correct, wasn't it been stated that Stagefright does NOT affect Android 4.0, 4.2 and 4.3? So saying "2.2 to 5.1" wouldn't be very correct, if it really doesn't affect 4.x Androids.

August 14, 2015 | 03:15 PM - Posted by Jeremy Hellstrom

Version 4.1 and later have defenses to limit some, but not all of the damage Stagefright can do

August 14, 2015 | 03:44 PM - Posted by Anonymous (not verified)

I got the update for stagefright and have not had any issues. It came in 3 days ago. Sorry for those who purchased phones that get updates from the carrier.

August 14, 2015 | 06:57 PM - Posted by Anonymous (not verified)

It would be nice to be able to get a Tablet that maybe could run Linux Mint, or Steam OS(I hope that someone is working on this). When big Interests like M$ And G($)($)Gle are locking vast numbers of devices into their walled gardens, things like stage-fright, and other vulnerabilities are bound to cause problems, and the device's manufacturers are dependent on the makers of the OS to in order to get the problem fixed. It looks like all of our devices are becoming little more than ad-ware based Point Of Sale systems, with more concern among the ad pushers, and OEMs for getting our credit card numbers to make more sales, than in actually protecting our privacy.

Yes Android is using the Linux Kernel, but it's more like the Linux Kernel is the captive of the Android run-time, and the user would be better served if more Tablet/Phone devices could run a distro like Mint, Steam OS, or others that give the users the option of more control over their hardware, and OS.

Enjoy you Point Of Sale terminals!

August 15, 2015 | 12:44 AM - Posted by Mark Harry (not verified)

Blah, blah, blah. The Russians might nuke us tomorrow. Not really, but the same probability of either being an actual problem.

August 16, 2015 | 06:40 PM - Posted by jim cherry (not verified)

how do I get this update on my blu phone which hasn't received a single update since the day it launched. Good thing I never get mms messages.

Post new comment

The content of this field is kept private and will not be shown publicly.
  • Lines and paragraphs break automatically.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd> <blockquote><p><br>
  • Web page addresses and e-mail addresses turn into links automatically.

More information about formatting options

This question is for testing whether you are a human visitor and to prevent automated spam submissions.