It’s the first week of September and Google is rolling out the latest security patches for Android, announced in the September Security Bulletin.
This month there’s three levels of patch, with OEMs able to apply the one relevant for their customers. The three patches show that some Common Vulnerability and Exposures (CVE’s) – there are 7 Critical, 23 High and 17 moderate CVEs in total – were discovered after notifying partners:
- 2016-09-01: Partial security patch level string. This security patch level string indicates that all issues associated with 2016-09-01 (and all previous security patch level strings) are addressed.
- 2016-09-05: Partial security patch level string. This security patch level string indicates that all issues associated with 2016-09-01 and 2016-09-05 (and all previous security patch level strings) are addressed.
- 2016-09-06: Complete security patch level string, which addresses issues that were discovered after partners were notified of most issues in this bulletin. This security patch level string indicates that all issues associated with 2016-09-01, 2016-09-05, and 2016-09-06 (and all previous security patch level strings) are addressed.
Obviously the 6th of September patch is the most up to date and with a critical kernel vulnerability patched in that update OEMs would be hopefully aiming for that. A High severity issue with Qualcomm devices is also a worry for those owners of devices with Qualcomm SoCs – with this patch likely related to the Quadrooter vulnerability announced last month.
The Nexus Factory Images page shows updates available for Nexus devices though the Nexus 7 (Wi-Fi/3G) hasn’t been updated yet – bring on a new 7″ Google tablet.
|Nexus 6||MOB30W and MMB30R||MMB30W and MOB31E|
|Nexus 7 Wi-Fi||MOB30X|
|Nexus 7 Mobile||MOB30X|
|Nexus 9 W-Fi||MOB30W||NRD90R|
|Nexus 9 LTE||MOB30W||MOB31E|
Nexus devices supported with security patches still, will be receiving a single OTA update to the 6th of September patch level in the coming days. If you want the OTA though you can check out the OTA links on the Nexus Files page.