What does Google's November 2024 Android security update address?

The November 2024 Android security update addresses 51 vulnerabilities, including two actively exploited zero-day vulnerabilities. It provides critical protections for Android users and includes patches for core Android components and vendor-specific vulnerabilities.

What is the critical vulnerability CVE-2024-38408 in Qualcomm components?

CVE-2024-38408 is a critical vulnerability in Qualcomm's closed-source component with a CVSS score of 8.1. Exploiting this flaw could potentially allow attackers to compromise affected devices. It is one of the 51 vulnerabilities addressed in the November update.

What actively exploited vulnerabilities are included in the November 2024 Android security update?

The update addresses two actively exploited zero-day vulnerabilities: CVE-2024-43093, an elevation of privilege vulnerability in the Android Framework, and CVE-2024-43047, a use-after-free vulnerability in Qualcomm’s DSP Service, which could lead to privilege escalation and has been linked to spyware attacks.

How does CVE-2024-43093 impact Android devices?

CVE-2024-43093 is an elevation of privilege vulnerability in the Android Framework that allows unauthorized access to sensitive directories (such as Android/data and Android/obb). It affects Android versions 12 through 15 and has been actively exploited, potentially linked to spyware.

What versions of Android are affected by CVE-2024-43047?

CVE-2024-43047 affects Qualcomm's Digital Signal Processor (DSP) service. Exploitation of this use-after-free vulnerability can cause memory corruption, leading to privilege escalation. It has been linked to spyware attacks and affects Android devices using vulnerable Qualcomm components.

How can Android users install the November 2024 security update?

To install the November 2024 security update, Android users should go to Settings > System > Software updates > System update or Settings > Security & privacy > System & updates > Security update. After installation, users should restart their device to apply the updates.

What are the two patch levels available in the November 2024 Android update?

The November update includes two patch levels: the November 1 Patch Level, which addresses core Android components (like the CVE-2024-43093 vulnerability in the Android Framework), and the November 5 Patch Level, which targets vendor-specific vulnerabilities, including those in Qualcomm components (such as CVE-2024-43047).

Advisory

Google releases November 2024 Android Update, fixes actively exploited flaws

published: Nov. 5, 2024

Take action: One critical and two actively exploited flaws in this release. Plan to update your Android OS as soon as your vendor releases an update for your phone. Depending on the vendor you might wait for some weeks/months before the update is released for your phone.

Learn More

Google's November 2024 Android security update addresses 51 vulnerabilities, including two actively exploited zero-day vulnerabilities. Users are advised to update to the security patch level of 2024-11-05 or later to protect against these threats.

One critical flaw reported

CVE-2024-38408 (CVSS score 8.1) - Qualcomm Closed-Source Component Vulnerability - This vulnerability affects Qualcomm’s closed-source component, allowing potential attackers to exploit security flaws that could compromise affected devices.

Actively exploited flaws in spyware

CVE-2024-43093 (CVSS score not disclosed) - Privilege Escalation in Android Framework - an elevation of privilege vulnerability (EoP) within the Android Framework allows unauthorized access to sensitive directories and subdirectories, such as Android/data, Android/obb, and Android/sandbox. Affected Versions are Android 12 through 15.
CVE-2024-43047 (CVSS score 7.8) - Use-After-Free in Qualcomm DSP Service - a use-after-free vulnerability impacts Qualcomm’s Digital Signal Processor (DSP) service. Attackers could exploit it to cause memory corruption, leading to privilege escalation. Reported by Google Project Zero and confirmed by Amnesty International’s Security Lab, the exploitation has been linked to possible spyware attacks, suggesting targeted use, possibly in surveillance operations.

The November 2024 security update is available in two patch levels:

November 1 Patch Level: Covers core Android components, addressing framework vulnerabilities like CVE-2024-43093.
November 5 Patch Level: Targets vendor-specific vulnerabilities, including CVE-2024-43047 in Qualcomm components, among others in MediaTek, Imagination Technologies, and other hardware providers.

Android device users are encouraged to install the November security update immediately:

To update: Go to Settings > System > Software updates > System update or Settings > Security & privacy > System & updates > Security update.
After installation: Restart the device to apply the updates.

Google releases November 2024 Android Update, fixes actively exploited flaws

Read More
'Leaky Vessels' flaws in multiple container engines expose …
Clawdbot Security Issues: Over 1,000 AI Agent Servers …
Windows kernel flaw actively exploited
Google patches actively exploited Chrome vulnerability
PuTTY SSH Client flaw allows recovery of ECDSA …