Conversation

Android has updated the May security with notes that 4 vulns were exploited in-the-wild. Qualcomm GPU: CVE-2021-1905, CVE-2021-1906 ARM Mali GPU: CVE-2021-28663, CVE-2021-28664 source.android.com/security/bulle

128

234

Replying to

Sorry if I missed it, but which of the four were exploited in the wild? I didn't see that in the list.

Replying to

I'm updating the P0 tracking spreadsheet now, but you can find it in the advisory under the "Android and Google service mitigations" area.

Replying to

and

Is there any chance of having the bug summaries present in the partner bulletin previews added back to the public bulletins? I don't understand why this was removed, especially when the source code for most of the fixes is public. I don't think it's at all helpful to censor it.

2:06 PM · May 19, 2021Twitter Web App

Replying to

and

I don't know what is in the partner bulletins, but if you go to the ARM and Qualcomm advisories for the CVEs then you can see more details there. I linked to the Android one because they're the ones who labeled itw.