Remote code execution vulnerabilities dominate this month’s critical Android patches.

Researchers have found an exploit in Nvidia Tegra X1-based systems that they say cannot be patched.

Google is warning a critical vulnerability found in its Media Framework warrants extra attention by security minded Android users.

Google patched a critical hole in its problematic Android Mediaserver component that could have allowed an attacker to use email, web browsing, and MMS processing of media files to remotely execute code.

Google’s November Android Security Bulletin patched 15 critical vulnerabilities, but only a supplemental patch for the Dirty Cow Linux vulnerability.