Google has apparently started rolling out the security OTA updates for February to all the eligible Nexus devices.
At this point, the Android 6.0.1 Marshmallow security update, tied to the build number MMB29Q, is being sent to Google’s Huawei Nexus 6P, LG Nexus 5X, HTC Nexus 6, LG Nexus 5 and Asus Nexus 7 (2013), according to Phone Arena.
In addition, the following devices are also receiving the Android update: the recently released Google Pixel C with build number MXB48T, HTC Nexus 9 with build number MMB29R and the Google Nexus Player with build number MMB29U.
Surprisingly, the old Google Nexus 10 tablet will also receive this security update via "Android 5.1.1 Lollipop" under the build number LMY49G.
Nexus device users can wait for the Android 6.0.1 Marshmallow security update to reach their device as an OTA update in phases. The other way is to download the factory images. In any case, readers should note that “flashing a factory image” will erase the personal data out of the Nexus handset.
According to the official Website, this firmware update fixes quite a lot of security holes. To top it off, about 5 of the patched vulnerabilities have been marked as "critical.”
Some of the critical flaws patched via the February security update are specific to Android Mediaserver. The Mediaserver has been at the receiving end of a lot of vulnerabilities/attacks in the past. This includes the Stagefright exploits. Google says “the most severe of these issues is a critical security vulnerability that could enable remote code execution on an affected device through multiple methods such as email, web browsing, and MMS when processing media files.”
Google has assured that the vulnerabilities around Android Mediaserver have not been exploited by any attackers. Nevertheless, it’s a good idea to fix the security flaws. Readers can check out the full list of fixes bundled inside the Android 6.0.1 Marshmallow security update for February from Nexus security bulletin for February.