Android "Master Key" vulnerability

---

@cobravenom96 wrote:

Does anyone know when we will get this patch? Well AT&T? I hope I dont have to wait a year for this to get patched. I ran the scan from Bluebox and I'm not patched. Google already released a patch for it. HTC does not have an update on their site for it.

 

http://www.techrepublic.com/blog/it-security/androids-very-real-master-key-vulnerability/

 

Phone:

HTC One X: Jelly Bean

 

---

from digging through the links it is stated the device manufcturer has to release it first to the carriers, then the carriers will need to modify for thier requirements. One of the links did state to turn off the ability to load apps from anyplace else then Google since have fixed the authorized app store to prevent any applications that has this embedded into it.

Since the articles do not mention what release of android has the security issue, device manufacturers will have to determine what devices and versions of android will be effected and even if they will patch the code. Meanwhile the prevention is not to download APK's from anyplace other then the authorized store site