Security Alert (A24-02-03): Multiple Vulnerabilities in Android

Description:

Google has released Android Security Bulletin February 2024 to fix multiple vulnerabilities in Android operating system. The list of patches can be found at:
This link will open in a new windowhttps://source.android.com/docs/security/bulletin/2024-02-01

Affected Systems:

• Android version 11, 12, 12L, 13 and 14

Impact:

Successful exploitation of the vulnerabilities could lead to remote code execution, elevation of privilege or information disclosure on an affected system.

Recommendation:

Some manufacturers have fixed or have planned to fix the vulnerabilities in their Android systems. Users are recommended to consult the vendors to confirm the availability of patches. If patches are available, users should upgrade to the fixed versions or follow the recommendations provided by the vendors to mitigate the risk.

More Information:

• This link will open in a new windowhttps://source.android.com/docs/security/bulletin/2024-02-01
• This link will open in a new windowhttps://www.hkcert.org/security-bulletin/android-multiple-vulnerabilities_20240207
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5091
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5249
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5643
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32841 (to CVE-2023-32843)
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33046
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33049
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33057 (to CVE-2023-33058)
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33060
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33072
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33076
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40093
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40122
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43513
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43516
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43518 (to CVE-2023-43520)
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43522 (to CVE-2023-43523)
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43533 (to CVE-2023-43534)
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43536
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49667 (to CVE-2023-49668)
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0014
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0029 (to CVE-2024-0038)
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0040 (to CVE-2024-0041)
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-20003
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-20006
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-20007
• This link will open in a new windowhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-20009 (to CVE-2024-20011)