Google patched 10 critical remote code execution bugs in its August Android Security Bulletin issued Monday. It warned the most severe RCE vulnerabilities could enable a remote attacker, using a specially crafted file, to execute arbitrary code within the context of a privileged process.
The security bulletin includes over-the-air updates and firmware images for Google’s Pixel, Pixel XL and Pixel C phones along with its Nexus devices (5X, 6, 6P, 9 and Player). Wireless carriers are expected to also push out these OTA updates to leading handset models in the days and weeks ahead.
