NCSC NL | Beveiligingsadviezen

Beveilingsadvies; NCSC-2024-0278 [1.0.0]

Beveiligingsadvies: NCSC-2024-0278 [1.0.0]
Publicatie: 03-07-2024 09:21 (Europe/Amsterdam)
Prioriteit: Normaal
Betreft: Kwetsbaarheden verholpen in Google Android en Samsung Mobile

Kenmerken

Improper Restriction of Operations within the Bounds of a Memory Buffer
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
Buffer Over-read
Improper Validation of Consistency within Input
Integer Overflow or Wraparound
Improper Input Validation
Exposure of Sensitive Information to an Unauthorized Actor
CWE-264
Improper Privilege Management
Improper Handling of Insufficient Permissions or Privileges
Improper Access Control
Improper Authentication
Use of Insufficiently Random Values
Improper Verification of Cryptographic Signature
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
CWE-371
Double Free
Use After Free
Out-of-bounds Write
Use of Implicit Intent for Sensitive Communication

Omschrijving

Google heeft kwetsbaarheden verholpen in Android.

Een kwaadwillende kan de kwetsbaarheden misbruiken om zich verhoogde rechten toe te kennen op het device en zo willekeurige code uit te voeren, mogelijk met rechten van het systeem en toegang krijgen tot gevoelige gegevens.

Voor succesvol misbruik moet de kwaadwillende het slachtoffer misleiden een malafife app te installeren en draaien of een malafide link te volgen.

In deze update zijn ook kwetsbaarheden verholpen in closed-source componenten van Arm, Imagination Technologies, MediaTek en Qualcomm.Google heeft verder weinig inhoudelijke informatie bekend gesteld.

Oplossingen

Google heeft updates uitgebracht om de kwetsbaarheden te verhelpen in Android 12,13 en 14.

Samsung heeft updates uitgebracht om de voor Samsung relevante kwetsbaarheden te verhelpen in Samsung Mobile devices.

Zie bijgevoegde referenties voor meer informatie.

Referenties

CVE's

CVE-2024-0153
CVE-2024-4610
CVE-2024-20076
CVE-2024-20077
CVE-2024-20888
CVE-2024-20889
CVE-2024-20890
CVE-2024-20891
CVE-2024-20892
CVE-2024-20893
CVE-2024-20894
CVE-2024-20895
CVE-2024-20896
CVE-2024-20897
CVE-2024-20898
CVE-2024-20899
CVE-2024-20900
CVE-2024-20901
CVE-2024-21460
CVE-2024-21461
CVE-2024-21462
CVE-2024-21465
CVE-2024-21469
CVE-2024-23368
CVE-2024-23372
CVE-2024-23373
CVE-2024-23380
CVE-2024-26923
CVE-2024-31320
CVE-2024-31331
CVE-2024-31332
CVE-2024-31334
CVE-2024-31335
CVE-2024-31339
CVE-2024-34583
CVE-2024-34584
CVE-2024-34585
CVE-2024-34586
CVE-2024-34587
CVE-2024-34588
CVE-2024-34589
CVE-2024-34590
CVE-2024-34591
CVE-2024-34592
CVE-2024-34593
CVE-2024-34594
CVE-2024-34595
CVE-2024-34720
CVE-2024-34721
CVE-2024-34722
CVE-2024-34723
CVE-2024-34724
CVE-2024-34725
CVE-2024-34726

Disclaimer

The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions: NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein. NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory. This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.