Google fixes two Android zero-day bugs actively exploited by hackers

Monday, Google has released an update for Android It fixes two zero-day defects that “limited, can be under target absorption”, as the company says. This means Google is aware that hackers are still using and using bugs to compromise with Android devices in real world situations.

Two of the two-of-the-best zero-days, one of the days, has been tracked CV-2024-53197Tech giants that track the government-backed Cyberatetacks were characterized by Amnesty International in collaboration with Google’s threat analysis group Benoit Seven ..

In February, Amnesty said that it was found that a company called Celebrit sells devices for law enforcement and forensicly sells devices to analyze the phone, take a discipline of three people Zero-day weakness To hack on Android phones.

In this case, Amnesty found the vulnerability with a monday patch, A Serbian student is being used against the worker Equipped to celery by local authority.

Patch on Monday, CVE -2024-53150, not much information on the second weakness, its discovery was also submitted to Google Seven and the error was Found in the kernelThe root of an operating system.

Google and Amnesty did not immediately respond to any request for the comment.

The Tech Giant said in his consultant that “the most serious of these issues is a serious protection weakness in the system of the system that can increase the remoteness of the scope without any additional execution,” and it is, “users do not require user interaction.”

Google said that it would push the source code patches for two steady zero-days within 48 hours, as well as noted that the Android partners were notified about all issues at least one month before the publication. “

Giving the open source nature of Android, each phone maker has to push the patchs to their own users now.