14
May
8558-hero

If you happen to own an Atrix HD from AT&T, get ready for something you haven't seen in a very long time: a firmware update. Unfortunately, this is only a "security enhancement" and not an upgrade to the Android operating system. Motorola hasn't specified exactly what this update is supposed to fix, but it's almost certainly a patch for the Heartbleed bug that was widely reported last month.

The last update to the Atrix HD shipped out at the end of 2012, which brought it from 4.0.4 (Ice Cream Sandwich) to 4.1.1 (Jelly Bean).

07
May
Heartbleed.svg

Both Sprint and T-Mobile announced OTA updates for two long-forgotten handsets today stuck on Android 4.1.1 - the Samsung Nexus S and the HTC One S, respectively (that is, the Sprint Nexus S and the T-Mobile One S).

RIMG_1400_1600x1200

Both updates are described merely as containing security enhancements, but given that Android 4.1.1 is the only known OS version potentially vulnerable to the now-infamous heartbleed exploit, it's fairly easy to determine what this is all about (HTC's site actually confirms as much).

06
May
htc-evo-4g-lte-black-en-slide-01

Remember the HTC EVO LTE? Sprint does, at least to some degree. The carrier is sending out a small software patch for the phone, reportedly removing a vulnerability from the infamous Heartbleed SSL security bug. Unpatched versions of Android 4.1.1 (and only 4.1.1) are vulnerable to Heartbleed, so EVO LTE owners probably want to get on that right away.

heartbleed

Heartbleed's relationship to Android is a little strange: it affects Android 4.1.1, but not earlier versions of Jelly Bean 4.1, and not later versions of any release, either, so the number of active phones and tablets at risk is comparatively small.

11
Apr
thumb
Last Updated: April 12th, 2014

The Internet has been abuzz over the recently discovered Heartbleed bug. If you're not already familiar, Heartbleed is a vulnerability in the OpenSSL software library that allows an attacker to steal data directly from the memory space of an application and learn the private keys used to keep data securely encrypted as it travels over the Internet. The implications of this kind of leak are certainly severe, and it has everybody rushing to either install updates that fix the bug or implement workarounds to disable it.

Quantcast