You are here: silicon.com > Networks > Mobile & Wireless

Android security hole gets patched up

Big test for Google OS…

Tags: os, security, mobile, android

By Stephen Shankland

Published: 3 November 2008 08:39 GMT

Google has begun distributing a patch to its Android mobile phone operating system, an early test for how nimbly the company can respond and how well the infrastructure works to distribute and install updates.

The patch fixes the highly publicised security problem with Android's web browser, which came to light publicly on 24 October, and makes a few other minor changes, according to a Google spokesman quoted in IT World on Friday.

The researchers - Charlie Miller, Mark Daniel and Jake Honoroff of Independent Security Evaluators - called the Android web browser flaw serious, but Google said its severity was mitigated by Android's design, which restricts each program to its own area.

Earlier, Google appealed for what it called "responsible disclosure" of security vulnerabilities - in other words, a grace period to fix problems before they're made public to reduce the likelihood an attacker will get a chance to exploit a vulnerability. There's an ages-old tension between companies that want to fix their products and security researchers who want to get the word out, in part because attackers also are trying to find the vulnerabilities.

Google didn't respond to a request for comment at the time of writing.

Original article: Google patches Android security flaw from CNET News.com

Add comment

Print story

Email story

RSS

Why you should care about Google's Android launch

Google working on browser patch for Android flaw

Google Android goes to Market with app store

Android is now open: So where next?

Motorola readying Android device?

Google's Android: Beware the malware?

In silicon.com

Read and write about internet access at the airports of the world at atlarge.com.

Commentary

Rob Bamforth Seeking memorable mobile apps Quocirca's Straight Talking: Why are there so few?

Stewart Baines How much SEO is too much? Net Effect: Plus 10 tips on boosting your site's profile

Latest News

Has in-flight entertainment got wings in the iPod era?

MoD inks £231m deal to boost comms

Take a trip to the future of air travel

Orange launches managed videoconferencing

British Airways: No mobiles on old planes

Jobs

Web Developer

Fix any bugs in owned code, either through own testing or by QA. Browser-based applications development Browser App development Key responsibilities: ...

C++ Developer FIX

You will have strong C++ skills including STL, come from a Financial background and have experience with FIX protocols in particular QuickFIX.URGENT ...

FIX Application Support Analyst

Our Client, based in the City of London our looking to hire FIX Application Support Analyst on a permanent basis. Supporting the Order Execution ...

Special Report Focus

Agenda Setters 2008
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.