Android "Master Key" vulnerability

Android "Master Key" vulnerability

Does anyone know when we will get this patch? Well AT&T? I hope I dont have to wait a year for this to get patched. I ran the scan from Bluebox and I'm not patched. Google already released a patch for it. HTC does not have an update on their site for it.

 

http://www.techrepublic.com/blog/it-security/androids-very-real-master-key-vulnerability/

 

Phone:

HTC One X: Jelly Bean

 

Message 1 of 2 (1,260 Views)
Highlighted
Expert
Solution
Accepted by ATTJulieCS (Community Support)
‎09-30-2015 1:39 AM

Re: Android "Master Key" vulnerability


cobravenom96 wrote:

Does anyone know when we will get this patch? Well AT&T? I hope I dont have to wait a year for this to get patched. I ran the scan from Bluebox and I'm not patched. Google already released a patch for it. HTC does not have an update on their site for it.

 

http://www.techrepublic.com/blog/it-security/androids-very-real-master-key-vulnerability/

 

Phone:

HTC One X: Jelly Bean

 


from digging through the links it is stated the device manufcturer has to release it first to the carriers, then the carriers will need to modify for thier requirements. One of the links did state to turn off the ability to load apps from anyplace else then Google since have fixed the authorized app store to prevent any applications that has this embedded into it.

 

Since the articles do not mention what release of android has the security issue, device manufacturers will have to determine what devices and versions of android will be effected and even if they will patch the code. Meanwhile the prevention is not to download APK's from anyplace other then the authorized store site

Message 2 of 2 (1,246 Views)
Share this topic
Announcements

Welcome to the AT&T Community Forums!!! Stop by the Community How-To section for tips on how to get started.