Google Releases July Security Update for Pixel Devices: Addresses Critical Vulnerability and Functional Improvements

California, United States United States of America
Addresses critical vulnerability CVE-2023-20431320 allowing third-party apps to bypass user prompts
Functional improvements and back gesture navigation fixes included
Google releases July security update for Pixel devices
Pixel 5a, Pixel 6 and 6 Pro, Pixel 6a, Pixel 7 and 7 Pro, Pixel 7a, Pixel Fold, Google Tablet receive update
Google Releases July Security Update for Pixel Devices: Addresses Critical Vulnerability and Functional Improvements

Google Releases July Security Update for Pixel Devices

Google has released the July security update for its lineup of Pixel devices. The update addresses several security vulnerabilities and functional improvements, making it essential for all users to install it as soon as possible.

According to the official Google source, the July 2024 Android Security Bulletin contains details of security vulnerabilities and functional improvements affecting supported Pixel devices. All supported Google devices will receive an update to the 2024-07-05 patch level, which includes patches for various components.

One of the critical security vulnerabilities addressed in this update is CVE-2023-20431320, which allows third-party apps to bypass user prompts on Pixel devices. This issue can lead to potential privacy and security risks if not addressed promptly.

Pixel devices that will receive the July update include: Pixel 5a, Pixel 6 and 6 Pro, Pixel 6a, Pixel 7 and 7 Pro, Pixel 7a, Pixel Fold, and the new Google Tablet. The update also includes fixes for a back gesture navigation issue that has been affecting some users.

Google encourages all customers to accept these updates to their devices as soon as they become available. To check your device's security patch level, follow the instructions on Check and update your Android version.

In related news, Samsung released its July security update earlier than Google but failed to address the same vulnerability that affects Pixel devices. Users of Samsung devices are advised to exercise caution until a patch is issued.



Confidence

100%

No Doubts Found At Time Of Publication

Sources

76%

  • Unique Points
    • Samsung released July security update before Google
    • Google confirmed Samsung and other Android devices are vulnerable to the same security risk as June’s Pixel zero-day warning
    • Pixel devices have been patched against this vulnerability, while Samsung devices have not
    • CVE-2024-31320 impacts Android’s underlying framework and could lead to local escalation of privilege with no additional execution privileges needed
  • Accuracy
    No Contradictions at Time Of Publication
  • Deception (30%)
    The article by Zak Doffman contains selective reporting and emotional manipulation. The author focuses on the missing Pixel zero-day fix in Samsung's July security update while mentioning that Google has confirmed other Android devices are vulnerable to the same security risk. However, the author fails to mention that Google has already patched Pixels against this threat, creating a false sense of urgency and fear for Samsung users. The author also uses emotional language such as 'alarming issue' and 'serious enough to prompt a US government warning' without providing any new information or context. Furthermore, the author mentions that it could be months before other devices receive the fix, implying that Samsung users are at greater risk than they actually are.
    • While user interaction is required for triggering this vulnerability, this could be cloaked in any number of different ways.
    • Google has now confirmed that Samsung and other android devices are vulnerable to the same security risk behind June’s Pixel zero-day warning.
  • Fallacies (75%)
    The article contains some inflammatory rhetoric and appeals to authority, but no formal or informal fallacies were found in the author's statements. The author does not directly quote any individuals or present dichotomous depictions. Examples provided are direct quotations from the article.
    • . . . this threat was serious enough to prompt a US government warning, you should be very mindful of the exposure.
    • Google warns that CVE-2024-31320 impacts Android's underlying framework and “could lead to local escalation of privilege with no additional execution privileges needed.” Take that in itself as an update now warning.
    • GrapheneOS also warns that another vulnerability—CVE-2024-29745—remains a threat to Samsung and other Android devices, and has also only been patched on Pixels.
  • Bias (80%)
    The author expresses a bias towards Samsung and its handling of security updates compared to Google and Pixel devices. The author repeatedly mentions that Samsung has not addressed the same security issues that have been fixed on Pixel devices, implying that Samsung is inferior in this regard.
    • Google has now confirmed that Samsung and other android devices are vulnerable to the same security risk behind June’s Pixel zero-day warning. While Pixels have been patched, Samsung devices have not. And that is not addressed at all in July’s update.
      • GrapheneOS also warns that another vulnerability–CVE-2024-29745–remains a threat to Samsung and other Android devices, and has also only been patched on Pixels.
        • Samsung has again beaten Pixel to the punch when it comes to issuing details of this month’s security release. But be warned, this update is actually bad news for your Galaxy device–the alarming issue is what’s missing, not what’s been fixed.
        • Site Conflicts Of Interest (100%)
          None Found At Time Of Publication
        • Author Conflicts Of Interest (100%)
          None Found At Time Of Publication

        95%

        • Unique Points
          • . July 2024 Android security update is available for Google Pixel devices.
          • . Pixel devices receiving the July update include: Pixel 5a, Pixel 6 and 6 Pro, Pixel 6a, Pixel 7 and 7 Pro, Pixel 7a, Pixel Fold, and Pixels Tablet.
          • Fixes an issue with back gesture navigation not working in certain conditions.
        • Accuracy
          • Samsung released July security update before Google
          • Pixel devices have been patched against a vulnerability, while Samsung devices have not
        • Deception (100%)
          None Found At Time Of Publication
        • Fallacies (100%)
          None Found At Time Of Publication
        • Bias (100%)
          None Found At Time Of Publication
        • Site Conflicts Of Interest (100%)
          None Found At Time Of Publication
        • Author Conflicts Of Interest (100%)
          None Found At Time Of Publication

        97%

        • Unique Points
          • Google rolled out July security update for Pixel devices.
          • Critical security vulnerability, CVE-2023-2024-31320, allows third-party apps to bypass user prompts on Pixel devices.
          • Pixel devices from Pixel 5a and later with Android 14 should update as soon as possible.
          • Update addresses a back gesture bug on any Pixel experiencing the issue.
          • Pixel Fold, Tablet, and entire Pixel 8 family (Pixel 8, Pixel 8 Pro, and Pixel 8a) are included in the update rollout.
        • Accuracy
          • Samsung released July security update before Google.
          • Pixel devices have been patched against this vulnerability, while Samsung devices have not.
        • Deception (100%)
          None Found At Time Of Publication
        • Fallacies (95%)
          The article contains some instances of appeals to authority and inflammatory rhetoric, but no formal or informal fallacies were found. The author quotes Google's statement about a critical security vulnerability (CVE-2023-31320) and the impact it could have on Pixel devices. This is an appeal to authority as the author relies on Google's assessment of the situation. Additionally, phrases like 'not a good thing to have' and 'make sure you grab the July security update ASAP' are examples of inflammatory rhetoric used to create a sense of urgency and importance around updating Pixel devices. However, these do not significantly impact the overall quality or accuracy of the article.
          • Google just rolled out its July security update for Pixel devices... This month’s update addresses a critical security vulnerability.
          • If you have seen this happening on your Pixel device, then you should be aware that it’s not a good thing to have. So make sure you grab the July security update ASAP.
        • Bias (100%)
          None Found At Time Of Publication
        • Site Conflicts Of Interest (100%)
          None Found At Time Of Publication
        • Author Conflicts Of Interest (100%)
          None Found At Time Of Publication

        98%

        • Unique Points
          • The Pixel Update Bulletin contains details of security vulnerabilities and functional improvements affecting supported Pixel devices.
          • All supported Google devices will receive an update to the 2024-07-05 patch level.
          • Google devices also contain patches for the security vulnerabilities described below.
          • Security vulnerabilities are grouped under the component that they affect, with a description and a table containing CVE, associated references, type of vulnerability, severity, and updated Android Open Source Project (AOSP) versions (where applicable).
          • Qualcomm components are among those patched for security vulnerabilities.
          • There are multiple security vulnerabilities addressed in the bulletin, each with their own CVE reference and severity level.
          • Functional patches include new bug fixes and improvements included in this release, which can be found on the Pixel Community forum.
        • Accuracy
          • Pixel devices have been patched against the security vulnerability, while Samsung devices have not.
          • Google warned that another vulnerability remains a threat to Samsung and other Android devices and has only been patched on Pixels.
        • Deception (100%)
          None Found At Time Of Publication
        • Fallacies (100%)
          None Found At Time Of Publication
        • Bias (100%)
          None Found At Time Of Publication
        • Site Conflicts Of Interest (100%)
          None Found At Time Of Publication
        • Author Conflicts Of Interest (0%)
          None Found At Time Of Publication