Google has fixed two big security flaws in its Pixel phones and disclosed the details earlier this week, but only after they were used by forensic companies to gain access without needing a PIN. In a Pixel update bulletin, Google listed the two vulnerabilities as CVE-2024-29745, an information disclosure flaw in the bootloader, and CVE-2024-29748, a privilege escalation flaw in the firmware. As usual, Google didn't acknowledge the flaws until a patch to fix them was ready.Also: Leak reveals the... Read this story
