Researchers at Security Research Labs (SRL) found that many Android smartphone vendors fail to roll out Googles security patches and updates exposing the users to severe risks. The problem also involves major vendors, including HTC, Huawei, and Motorola. Some Android devices receive only half of the monthly updates, in some cases only from Google and none from the manufacturer. The failure in patch management is not enough for an attacker to remotely compromise an Android device and bypass defense mechanisms like the sandbox and ASLR. The researchers presented the findings of the research at the Hack In The Box security conference in Amsterdam.”]
Source: https://securityaffairs.co/wordpress/71385/mobile-2/android-devices-updates.html

