Google Rolling Out Server-Side Fix to Android Authentication Flaw


Today we’re starting to roll out a fix which addresses a potential security flaw that could, under certain circumstances, allow a third party access to data available in calendar and contacts. This fix requires no action from users and will roll out globally over the next few days.

It hadn’t occurred to me that they could fix this server-side. This means users won’t have to wait for any sort of software update on their devices, and takes all the piss and vinegar out of my snark yesterday.

Wednesday, 18 May 2011