The irony of Google security blog giving advice to a problem that the company is responsible for it happening in first place.<p>Had they placed update requirements as part of the Play Store contract, vendors would be more keen in providing the said updates.
> On Android, it is normal for vendors to add device-specific code to the kernel.<p><a href="https://i.imgur.com/DnRNrZe.png" rel="nofollow">https://i.imgur.com/DnRNrZe.png</a><p>Normal for Android : Normal in general :: Madness : Sanity<p>> This code is a frequent source of security vulnerabilities.<p>If the first sentence was the shot, that's the chaser.