While last month’s security patch for Nexus devices also included performance and stability fixes for the Nexus 5X, April’s update is full of fixes across the board. A majority are rated critical or high and this update includes a fix for a Linux security issue that caused Google to issue a mid-cycle patch last month.

The April security bulletin lists fixes for 29 security bugs found by the Android and Google security teams and other independent researchers. The most severe vulnerability could enable remote code execution when browsing or using email and MMS, though Google notes that there are no reports of customers affected by this issue.

Others deal with elevation of privilege vulnerabilities in Bluetooth, the Download manager, and other areas, as well as as several vulnerabilities that would allow malicious apps to access a user’s private information.

It usually takes about a week for the update to start rolling out. Those who don’t want to wait for the OTA can download the factory images below:

If you need help flashing factory images, check out our guide here. Keep in mind that flashing your device will wipe any data on it. For most users, this is not worth the hassle and waiting for the OTA is the wiser option.

About the Author