Android published a new list of over 40 vulnerabilities for Android 11, 12 and 13 in May. The good news: there are no critical vulnerabilities. The bad: apart from one gap, all others are considered highly dangerous. The first manufacturers are already rolling out the updates. Users should check the update area of the smartphone more often and possibly initiate the update manually.
In Google's security bulletin for May there is again a very long list of security problems. They cover the areas of frame, system, kernel or graphics. However, Google classifies almost all of the listed vulnerabilities as highly dangerous. Only one vulnerability is rated as moderate.
Vulnerabilities on Android 11,12,13
The vulnerabilities listed affect Android 11, 12 and 13. However, no version with a particularly large number of holes stands out. All but one vulnerability is considered Highly Dangerous. A vulnerability in the framework is considered particularly dangerous by experts. It is interesting, however, that the listed CVE numbers (Common Vulnerabilities and Exposures) do not all start with “2023” and are therefore new. There are some vulnerabilities from 2021 and 2022, such as CVE-2022-20444 or CVE-2021-0877, which have probably been known for a long time, but can only be closed now.
Manufacturers react faster
In the past, it often took a very long time for the security update to reach the devices on smartphones with active support. In the meantime, many manufacturers have become faster. Various users on the web report that the first updates have already arrived on the devices at Honor, Huawei or Samsung. However, since the manufacturers sometimes pack further device updates into one update, delays can also occur with some models.
More at Android.com