Posts: 2,003 +231
Google has delivered on its promise to release monthly security updates today, with the first of said updates now rolling out to nearly all Nexus devices released in the past three years.
The updates haven't been given their own Android version number, with Google instead opting to simply change the build number. The builds in question are 'LMY48M' for the Nexus 4, 5, 6, 7, 9, and 10, and 'LMY48N' for the Nexus Player, both of which are based on Android 5.1.1.
The update is mostly concerned with addressing memory overflow issues that could potentially lead to exploitation. There's also a fix for a "moderate severity vulnerability" that allowed apps to bypass SMS short code notifications that informed users when a text message could cost them money.
Stagefright, a collection of dangerous Android vulnerabilities that can now be exploited by attackers, has already been patched in the latest version of Android. Nexus owners shouldn't have to worry about becoming victim to any Stagefright exploits.
The attention now squarely turns on other Android OEMs to implement these security fixes in their devices. Google has done a pretty decent job of patching devices as old as the Nexus 4 from 2012, but some OEMs have many more models to update, some of which will, unfortunately, be left unpatched.
Samsung and LG have already promised monthly updates for some of their devices, so hopefully we'll see these two companies release patches for their smartphones in the near future. It's unclear whether other companies, especially those notoriously slow at releasing software updates (such as Sony), will even patch their devices at all.