Like last month’s, the May security patch for Nexus devices is full of fixes across the board. This month’s bulletin includes several procedural changes that expand the security bulletin to list vulnerabilities for all Android devices.
Spurred by Stagefright last August, Google began issuing monthly security patches for its Nexus devices and many OEM partners did the same. Google is now renaming its monthly advisories to the Android Security Bulletin to “encompass a broader range of vulnerabilities that may affect Android devices.” Additionally, severity ratings have been updated to align them more closely with real world impact to users.
The security bulletin now lists whether a vulnerability affects a Nexus device. Save for one, 24 Nexus vulnerabilities were identified and patched up in this May’s update. The most severe of these issues is a critical security vulnerability that could enable remote code execution when processing media files.
It usually takes about a week for the update to start rolling out. Those who don’t want to wait for the OTA can download the factory images below:
- Pixel C
- Nexus 6P
- Nexus 5X
- Nexus 6
- Nexus Player
- Nexus 9 (LTE)
- Nexus 9 (Wi-Fi)
- Nexus 5
- Nexus 7 2013 (Wi-Fi)
- Nexus 7 2013 (Mobile)
If you need help flashing factory images, check out our guide here. Keep in mind that flashing your device will wipe any data on it. For most users, this is not worth the hassle and waiting for the OTA is the wiser option.