The Android security update patches 15 bugs, four rated critical, 10 rated high and one ranked moderate in severity. Three of the critical bugs are tied to the System portion of the Android platform architecture, responsible for core apps such as the dialer, email and camera. Google also issued patches for flaws identified in third-party components from vendors such as NVIDIA, Broadcom and Qualcomm, bringing the total number of fixed CVEs to 30. Google’s next-generation mobile operating system, Android Q, revamps the way it delivers direct over-the-air updates.
Source: https://threatpost.com/google-critical-remote-code-execution-flaws-android/144497/