Inkampani ye-TrendMicro ulwazi mayelana nokuba sengozini (i-CVE ayabelwe) kumshayeli , okuvumela umsebenzisi wasendaweni ongenalo ilungelo ukuthi asebenzise ikhodi yakhe kumongo we-Linux kernel. Ulwazi mayelana nokuba sengozini lunikezwa kumongo weplathifomu ye-Android, ngaphandle kokuchaza ukuthi le nkinga iqondene ne-Android kernel noma ingabe iyenzeka yini ku-Linux kernel evamile.
Ukuze kusetshenziswe ubungozi, umhlaseli udinga ukufinyelela kwasendaweni kusistimu. Ku-Android, ukuze uhlasele, udinga kuqala ukulawula uhlelo lokusebenza olungenalo igunya elinegunya lokufinyelela isistimu engaphansi ye-V4L (Ividiyo ye-Linux), isibonelo, uhlelo lwekhamera. Ukusetshenziswa okunengqondo kakhulu kokuba sengozini ku-Android ukufaka ukuxhashazwa ezinhlelweni ezinonya ezilungiselelwe abahlaseli ukukhulisa amalungelo kudivayisi.
Ubungozi buhlala bungakaphenyi okwamanje. Noma i-Google yaziswa ngalolu daba ngoMashi, ukulungiswa akuzange kufakwe kuhlelo Izinkundla ze-Android. Isiqephu sokuvikela se-Android sikaSepthemba silungisa ubungozi obungu-49, ezine zakhona zilinganiselwe njengezibucayi. Ukulimala okubili okubalulekile kuye kwabhekwana naye ohlakeni lwe-multimedia futhi kuvumela ukusetshenziswa kwekhodi lapho kusetshenzwa idatha ye-multimedia eklanywe ngokukhethekile. Ubungozi obungu-31 bulungisiwe ezingxenyeni zama-chip e-Qualcomm, lapho ukuba sengozini okubili kunikezwe ileveli ebalulekile, okuvumela ukuhlasela okukude. Izinkinga ezisele zimakwe njengeziyingozi, i.e. vumela, ngokukhohlisa kwezinhlelo zokusebenza zasendaweni, ukusebenzisa ikhodi kumongo wenqubo eyilungelo.
Source: opennet.ru