Android users beware! Critical vulnerabilities found in Qualcomm Adreno GPUs
Google researchers have recently identified over nine vulnerabilities in Qualcomm's Adreno GPU, a graphics processing unit integrated into Snapdragon processors. The security flaws pose significant risks due to the GPU's kernel privileges, which could potentially allow attackers to gain full control of a device. The research primarily focused on GPU drivers as they can be accessed by untrusted apps without additional permissions, making them attractive targets for hackers.
Google's Android Red Team highlights increasing exploitation of GPU drivers
Xuan Xing, the manager of Google's Android Red Team, told Wired that hackers are increasingly exploiting flaws in GPU drivers, such as those found in Qualcomm's Adreno and Arm's Mali. These vulnerabilities can lead to unauthorized access to data stored in GPU memory, posing critical risks given the widespread use of these components in devices like Android smartphones and tablets.
Qualcomm patches vulnerabilities, urges users to update promptly
Qualcomm has already patched the vulnerabilities discovered by Google. However, users are advised not to become complacent as auto-updating features are generally slower than manual installation of updates. There is also a slight delay between manufacturer patches and operating system updates. Android users are encouraged to check for and install these updates as soon as possible since some of these vulnerabilities were reportedly already being exploited by hackers.
