Samsung illustra le migliorie dell'aggiornamento alla sicurezza di aprile

SMR-APR-2016

Samsung Mobile is releasing a maintenance release for major flagship models as part of monthly Security Maintenance Release (SMR) process.
This SMR package includes patches from Google and Samsung.

Google patches include all patches up to Android Security Bulletin - April 2016 package.

The Bulletin (April 2016) has 41 items, which also contain the following 35 CVE items:
CVE-2016-1503(C), CVE-2014-6060(C), CVE-2016-0835(C), CVE-2016-0836(C), CVE-2016-0837(C), CVE-2016-0838(C), CVE-2016-0839(C), CVE-2016-0840(C), CVE-2016-0841(C), CVE-2016-0842(C), CVE-2016-0846(H), CVE-2016-0847(H), CVE-2016-0848(H), CVE-2016-0849(H), CVE-2016-0850(H), CVE-2016-2412(H), CVE-2016-2413(H), CVE-2016-2414(H), CVE-2016-2415(H), CVE-2016-2416(H), CVE-2016-2417(H), CVE-2016-2418(H), CVE-2016-2419(H), CVE-2016-2420(M), CVE-2016-2421(M), CVE-2016-2422(M), CVE-2016-2423(M), CVE-2016-2424(M), CVE-2016-2425(M), CVE-2016-2426(M), CVE-2016-2427(M), CVE-2016-1621(C), CVE-2016-0832(M), CVE-2016-0805(C), and CVE-2016-0806(C).
* Severity : (C)-Critical, (H)-High, (M)-Moderate, (L)-Low

※ Please see Android Security Bulletin for detailed information on Google patches.


Along with Google patches, Samsung Mobile provides 4 Samsung Vulnerabilities and Exposures (SVE) items described below, in order to improve our customer's confidence on security of Samsung Mobile devices¹.
Some of the SVE items may not be included in this package, in case these items were already included in a previous maintenance release.


SVE-2016-5393: ACIPC-MSOCKET driver local privilege escalation Vulnerability

Severity: Critical
Affected versions: JBP(4.2) or KK(4.4) with Marvell chipset
Reported on: January 7, 2016
Disclosure status: Privately disclosed.
The vulnerability of ACIPC_MSOCKET driver enables an attacker to get privilege escalation through making a stack overflow.
The fix prevents stack overflow by restricting the access to the file and changing the vulnerable code into the proper.


SVE-2016-5534: Non-existent Notification Listener App Vulnerability

Severity: High
Affected versions: Galaxy S6 Edge
Reported on: January 17, 2016
Disclosure status: Privately disclosed.
The vulnerability allows any application which having a specific component name to receive notifications even though the corresponding application is not installed on the device.
The fix prevents the component from receiving any notification by removing the component explicitly from 'enabled notification listeners'.


SVE-2016-5544: Clipboard Vulnerability

Severity: Medium
Affected versions: All devices using Samsung clipboard
Reported on: December 9, 2015
Disclosure status: Privately disclosed.
The vulnerability possible to make a race condition allows access to clipboard data of Secure World even from Normal World.
The fix introduces some synchronization points to avoid all possibility of a race condition.


¹ Some SVE items included in the Samsung Android Security Update cannot be disclosed at this time.

Acknowledgements

We truely appreciate the following researchers for helping Samsung to improve the security of our products.

- C0RE Team of Qihoo 360: SVE-2016-5393
- Ryan Johnson of Kryptowire: SVE-2016-5534
- Uri Kanonov and Avishai Wool of Tel Aviv University: SVE-2016-5544