In response to the September Android Security Bulletin Zebra has addressed security vulnerabilities affecting eleven Zebra Android devices running Kit Kat (K), Lollipop (L), and Marshmallow (M) through patches as part of the Zebra LifeGuard™ for Android™ program.
According the the Android Security Bulletin:
The most severe of these issues is a critical severity vulnerability in media framework that could enable a remote attacker using a specially crafted file to execute arbitrary code within the context of a privileged process. The severity assessment is based on the effect that exploiting the vulnerability would possibly have on an affected device, assuming the platform and service mitigations are turned off for development purposes or if successfully bypassed.
We have had no reports of active customer exploitation or abuse of these newly reported issues. Refer to the Android and Google Play Protect mitigations section for details on the Android security platform protections and Google Play Protect, which improve the security of the Android platform.
Impacted devices include ET50 L, ET55 L, MC18L, MC32 L, TC51 M, TC56 M, TC70 KK and L, TC70x M, TC75 KK and L, TC75x M, TC8000 KK.
Device updates are an important way to keep your Android devices secure and running at their full potential. All customers are encouraged to accept these updates to their devices.
Read more about the issues addressed or download the updates at Zebra.com