Google rolling out fix for Android security flaw

Google says all users should be patched over coming days

Stewart Mitchell
19 May 2011

Google says it's fixing the vulnerability that could potentially expose Android handset data to hackers.

The weakness theoretically allowed hackers to gain access to the data contained within phones' Calendar and Contacts applications using unsecured Wi-Fi networks, according to researchers at Ulm University in Germany.

Although the scale of the vulnerability was over-exaggerated in mainstream media reports, it still required a fix, and Google said the patch would be rolled out over the coming days.

“Today we’re starting to roll out a fix which addresses a potential security flaw that could, under certain circumstances, allow a third-party access to data available in calendar and contacts,” the company said in a statement. “This fix requires no action from users and will roll out globally over the next few days.”

The fix had initially been limited to Google's Nexus One and Nexus S phones.

Read more about: