Google’s April 2022 Android updates include fixes for 44 vulnerabilities, including many of “critical severity.”
The update was split into two parts, the first of which arrived as the “2022-04-01 security patch level” on devices and addressed 14 security issues.
The most serious of these is a critical flaw in Framework that may be used to elevate privileges without requiring any user involvement. Furthermore, according to Google’s advice, no further execution privileges are required.
This month, seven vulnerabilities in the Framework component were fixed, all of which were rated “high severity” and led to privilege elevation.
Patches for two Media framework flaws and three System issues are included in the “2022-04-01 security patch level.” Two Google Play system updates also fix two security flaws in MediaProvider and Media Codecs.
The “2022-04-05 security patch level” is the second portion of this month’s security update, and it contains patches for at least 30 vulnerabilities in System, Kernel components, MediaTek components, Qualcomm components, and Qualcomm closed-source components.
Nine of the vulnerabilities, all of which affect Qualcomm components, are classified as “critical,” while the rest 21 are classified as “high severity.”
Google also released remedies for a total of five Pixel-specific vulnerabilities this month. Kernel, Pixel, and Qualcomm components are all affected.