Security Holes In Google's Android SDK

Posted by Zonk on Tuesday March 4, 2008 @05:28PM from the patchy-the-leaky-robot dept.

Redon Buckeye writes "Google's Android software development kit is using several outdated and vulnerable open-source image processing libraries, some of which can be exploited to take complete control of mobile devices running the Android platform. From the article: 'Several vulnerabilities have been found in Android's core libraries for processing graphic content in some of the most used image formats (PNG, GIF, and BMP). While some of these vulnerabilities stem from the use of outdated and vulnerable open source image-processing libraries, other were introduced by native Android code that uses them or that implements new functionality.'"

1 of 77 comments (clear)

Min score:

Reason:

Sort:

that's why it's open source by nguy · 2008-03-04 19:51 · Score: 4, Interesting

That's why people make software open source.

I think the only thing that bothers me about Android is that the full source code has not been released yet, although Google claims they will be making that available.