Google is rolling out a massive security update for Pixel phones, fixing 50 vulnerabilities
June 2024 was a big month for Pixel smartphones. Not only was Gemini Nano rolled out to the Pixel 8a, but Google also released a massive security update for multiple models.
It addresses 50 vulnerabilities, ranging in severity from moderate to critical. One of the more insidious flaws is CVE-2024-32896, which Tom’s guide states “is a vulnerability to abuse of privilege.”
An EoP refers to a bug or design flaw that a bad actor can exploit to gain unfettered access to a smartphone’s resources. It’s a level of access that even a Pixel owner wouldn’t normally have. While not as serious as the others, CVE-2024-32896 did warrant an additional warning from Google on the patch. Pixel Update Bulletin pagestating that it “may occur under limited, targeted exploitation.”
In other words, it’s likely that bad actors will target the flaw to infiltrate a Pixel phone, so it’s important that you install the patch.
Install the solution
The rest of the patch affects other important components on the devices, such as the Pixel Firmware fingerprint sensor. It even fixes a handful of Qualcomm and Qualcomm closed-source components.
Google’s patch is ready to download for all supporting Pixel phones, and you can find the full list of models on the tech giant’s website Help website here. They include, but are not limited to, the Pixel Fold, Pixel 7 series, and the Pixel 8 line.
To download the update, go to the Settings menu on your Pixel phone. Go to Security & Privacy and then System & Updates. Scroll down to the Security Update and click Install. Give your device enough time to install the patch and then restart your smartphone.
Exists on Android
It is important to mention that the EoP vulnerability appears to exist on third-party Android hardware; however, a solution won’t appear for a while. As a news site Beeping computer explains that the operating systems for Pixel and Android smartphones receive security updates at different times. The reason for this separate rollout is that third-party devices have their own “exclusive features and capabilities.” Some people get out of it faster than others.
Developers of GrapheneOS, a unique version of Android that focuses more on security, initially discovered the flaw in April. In a recent post on X (the platform formerly known as Twitter), the team believes non-Pixel phones likely won’t receive the patch until the launch of Android 15. If you don’t get the new OS, the EoP bug likely won’t be removed . The developers of GrapheneOS claim that the June update “has not been backported.”
Check out Ny Breaking’s list of the best Android antivirus apps for 2024 if you want even more protection.