On August 18, October 10, according to foreign media reports, Google launched a new version of the android open-source mobile phone platform to fix two security vulnerabilities that may cause DoS attacks.
According to ocert, an organization that handles disclosure of security vulnerabilities in open-source software projects, these vulnerabilities allow hackers to launch attacks and prevent Android phones from being used.
According to a recent report on text messages processed by the Android operating system, a specially crafted text message can disconnect a mobile phone from a cellular network. This malicious text message contains a malicious format of "wap push" information, which can cause Android mobile appsProgram"Java arrayindexoutofboundsexception" in.
The mobile app will be restarted without notice, resulting in temporary disconnection between the mobile phone and the cellular network. If the SIM card of the mobile phone is protected by a pin, the interruption may take a long time. This requires you to re-enter the pin and pay attention to it. This fault is considered a remote denial of service attack.
Another security vulnerability is that if a user downloads a specially crafted malware, the malware will start the Android mobile phone's security vulnerability API and restart the system process. This fault is also considered a denial of service attack.
These two security vulnerabilities affect the android 1.5 operating system. Google has released patches to fix these two vulnerabilities.