Google has released a December 2019 Android security patch for its latest Android 10 mobile operating system line to address some of the most critical security vulnerabilities. Consisting of the security patch levels of December 1, 2019 and December 5, 2019, the Android security patch for December 2019 addresses Android components, Android frameworks, media frameworks, Android systems, kernel components, and Qualcomm components. Components that include closed source code.
It is understood that the most critical security issues fixed in this update affect the Framework component and may allow a remote attacker to permanently deny service. In addition, it fixes a vulnerability that could allow a remote attacker to execute arbitrary code in the context of a privileged process by using a specially crafted file, and that could allow a local attacker with privileged access to access sensitive data.
At the same time, Google released a December 2019 Pixel Update bulletin to address various security vulnerabilities and issues with Pixel devices, as well as the security vulnerabilities described in the Android security bulletin in December 2019. The December 2019 Pixel Update Bulletin contains fixes for a total of 8 vulnerabilities found in kernel components and Android.
Currently, android security bulletins for December 2019 and Pixel update announcements for December 2019 will be available to all supported Pixel devices, including the Pixel 2, Pixel 2 XL, Pixel 3, Pixel 3 XL, Pixel 3 XL, Pixel 3 a, Pixel 3a XL, Pixel 4 and Pixel 4 XL. In the coming weeks, it will also be available for Other Android devices from Essential, Samsung, OnePlus and more manufacturers.