Samsung has been customizing Android for its devices adding skins and a much attractive and impressive user interface. However, Project Zero recently discovered that one of Samsung's flagship smartphones, the Galaxy S6 Edge has several bugs, but the Google-run group has since been able to fix the issues.
According to ZDNet, there were 11 bugs found and each of them is described as "high-impact." One of the bugs, which is considered as the most serious one was discovered in July of this year. CVE-2015-7888 is the issue number assigned to this bug by the directory traversal bug. This problem was discovered in the WifiHs20UtilityService of the flagship device, which unzips files that have been zipped already and then writes it into random location. The so called "drive by download" problem has been resolved on the S6 Edge after it was discovered. However, it seems that the other Samsung devices could also be affected.
Meanwhile, another bug was discovered on S6 Edge in a client's email. Project Zero was able to found out about it and they left a statement on their blogpost that the bug was able to let an "unprivileged application to access emails and then forward them to another account". More so, they also stressed out that the bug was easy to be exploited even from a remote area.
Usually, tech giants just like Samsung, LG, and HTC often add user interfaces or skins on top of the Android operating system. The bugs that were discovered by the Project Zero team on the Galaxy S6 Edge is more likely the result of the Samsung's TouchWiz skin.
Google, being part of the team's initiative usually check and tests smartphones from OEM manufacturers just like Samsung, the biggest and most popular producer of Android devices in the whole world. If there are bugs discovered, they usually give 90 days to resolve the issue before they publish the results. Samsung has resolved eight and plans to fix the remaining three bugs in November.