Sep 06 AT 3:33 PM Dima Aryeh 0 Comments

Google rebuilds mediaserver for Nougat that opened door for Stagefright exploits

generic security lock

We knew that Android 7.0 Nougat had improved security, but now Google has detailed what it’s done with the operating system update. A big part was addressing the issues with mediaserver.

Stagefright was a huge exploit that affected almost every Android device on the market, no matter the manufacturer, and even affecting old versions of Android. Google quickly patched some of the attack vectors, but phone makers were a little slower than that.

The Stagefright bug related to how mediaserver handles incoming media. In particular, it loaded MMS media into memory before it was even opened, and bugs in the system allowed malicious software to enter the device.

Fortunately, the entire mediaserver has been rebuilt in the Nougat update. It now has multiple segmented steps and checks for integer overflow before loading media. It should be a lot harder to exploit now, which will make it less of a target for attackers.

If you own a recent Nexus device, you are likely rocking Nougat right now. Most of us aren’t so lucky. However, we have some beefed up security to look forward to when our respective device manufacturers do finally release the update.

Via: The Verge

Dima Aryeh is a Russian obsessed with all things tech. He does photography, is an avid phone modder (who uses an AT&T Galaxy Note II), a heavy gamer (both PC and 360), and an aspiring home mechanic. He is also an avid fan of music, especially power metal.

    Most Tweeted This Week