Google releases fix for Android security hole to OEM's

We touched on how "donut" which is the codename for the vulnerability discovered by Bluebox Security research team – Bluebox Labs that could potentially compromise 99% of the Android devices out there.

Google stated that the security hole has been patched, and according to Ubergizmo, the said patch has been released to the OEM (Original Equipment Manufacturers), and according to Gina Scigliano, Google’s Android Communications Manager, it seems that it has been confirmed that Google has since provided a patch to their partners, some of whom, like Samsung, have begun shipping the fix to Android devices.

TechCrunch points out that Bluebox Security discovered the hole in Android’s code base back in February, and disclosed it to Google at that time, but only made it public last week. Samsung’s Galaxy S4 was named then as one Android device that had already been patched, so it’s likely that the handset is the device Scigliano is referring to when she cites Samsung already shipping a fix. We’ve asked Samsung to confirm which other handsets, if any, it’s now shipping fixes for.

Basically what this means is that while Google has the patch ready, you might have to wait a bit until your manufacturer incorporates it in their next update, so some of your friends might receive it earlier, or maybe even later than you.