Google Security: Chrome, Chrome OS, Android Immune To Heartbleed Bug--Except For Still-Unpatched Android 4.1.1
As the Heartbleed bug inflicts damage in absentia (or not, there’s no way to tell), Google Security wrote a blog post letting users know that although the company has actively patched to numerous Google services, some important Google products are immune to the bug including Chrome, Chrome OS, and all versions of Android--except for Android 4.1.1.
“All versions of Android are immune to CVE-2014-0160 [Note: That’s the Heartbleed bug] (with the limited exception of Android 4.1.1; patching information for Android 4.1.1 is being distributed to Android partners),” wrote Google Product Manager Matthew O’Connor in a blog post.
O’Connor stated that patched Google products include Search, Gmail, YouTube, Wallet, Play, Apps, App Engine, AdWords, DoubleClick, Maps, Maps Engine, and Earth. Patches for Google Search Appliance and Cloud SQL should be implemented by now, and customers need to manually update and reboot instances of Google Compute Engine.
“All versions of Android are immune to CVE-2014-0160 [Note: That’s the Heartbleed bug] (with the limited exception of Android 4.1.1; patching information for Android 4.1.1 is being distributed to Android partners),” wrote Google Product Manager Matthew O’Connor in a blog post.
O’Connor stated that patched Google products include Search, Gmail, YouTube, Wallet, Play, Apps, App Engine, AdWords, DoubleClick, Maps, Maps Engine, and Earth. Patches for Google Search Appliance and Cloud SQL should be implemented by now, and customers need to manually update and reboot instances of Google Compute Engine.
