The Android security flaw recently discovered by Bluebox Security gets fixed thanks to the latest CyanogenMod update. This time around the update is focused on fixing various bugs and other issues in your device as opposed to bringing in new features; given the potentially dangerous nature of the “Master Key” flaw it’s imperative that users get it patched as soon as the update arrives.
With the update, your device goes up to version 10.1.1. Not only does it fix the Master Key flaw (also known as bug 8219321) but it is also going to include the following items along with it;
- CVE-2013-2094 (Linux kernel exploit)
- CVE-2013-2596 (Qualcomm-specific exploit)
- CVE-2013-2597 (Qualcomm-specific exploit)
The update is also said to fix some unspecified “general device” bugs and the people behind CyanogenMod themselves insist that users should update their devices as soon as their respective build is available. The “Master Key” issue has also been patched for users of CM9 and CM7 so check your phone’s updates in the CyanogenMod updates page. Moreover the Bluebox Security app showed the patch status as Patched post the update.
Ignoring the possible side effects with the update what is probably the most dangerous security flaw in Android has been averted and with this CyanogenMod users can get breathe a sigh of relief even if it is momentarily.