Android Memory Safety Bugs Fall Below 20% Due to Rust Adoption

First reported

17.11.2025 08:02

Last updated

1 unique sources, 1 articles

Summary

Hide ▲

Google reports that the adoption of Rust in Android has reduced memory safety vulnerabilities to below 20% for the first time. The transition has led to a 1000x reduction in vulnerability density compared to C and C++ code, along with improvements in software delivery efficiency. Rust changes have a 4x lower rollback rate and 25% less time in code review. Google plans to expand Rust usage in kernel, firmware, and critical apps, while emphasizing a defense-in-depth approach.

Timeline

17.11.2025 08:02 1 articles · 23h ago

Rust Adoption Reduces Android Memory Safety Bugs Below 20%
Google reports that Rust adoption in Android has reduced memory safety vulnerabilities to below 20% for the first time. The transition has led to a 1000x reduction in vulnerability density compared to C and C++ code, along with improvements in software delivery efficiency. Rust changes have a 4x lower rollback rate and 25% less time in code review. Google plans to expand Rust usage in kernel, firmware, and critical apps, while emphasizing a defense-in-depth approach.
Show sources

Rust Adoption Drives Android Memory Safety Bugs Below 20% for First Time — thehackernews.com — 17.11.2025 08:02
Open in new tab

Information Snippets

Rust adoption in Android has reduced memory safety vulnerabilities to below 20%.
First reported: 17.11.2025 08:02

1 source, 1 article
Show sources
- Rust Adoption Drives Android Memory Safety Bugs Below 20% for First Time — thehackernews.com — 17.11.2025 08:02
Memory safety vulnerability density in Rust is 1000x lower than in C and C++ code.
First reported: 17.11.2025 08:02

1 source, 1 article
Show sources
- Rust Adoption Drives Android Memory Safety Bugs Below 20% for First Time — thehackernews.com — 17.11.2025 08:02
Rust changes have a 4x lower rollback rate and 25% less time in code review compared to C++.
First reported: 17.11.2025 08:02

1 source, 1 article
Show sources
- Rust Adoption Drives Android Memory Safety Bugs Below 20% for First Time — thehackernews.com — 17.11.2025 08:02
Google plans to expand Rust usage to kernel, firmware, and critical apps like Nearby Presence and Chromium.
First reported: 17.11.2025 08:02

1 source, 1 article
Show sources
- Rust Adoption Drives Android Memory Safety Bugs Below 20% for First Time — thehackernews.com — 17.11.2025 08:02
A memory safety vulnerability (CVE-2025-48530) in CrabbyAVIF was discovered and patched in August 2025.
First reported: 17.11.2025 08:02

1 source, 1 article
Show sources
- Rust Adoption Drives Android Memory Safety Bugs Below 20% for First Time — thehackernews.com — 17.11.2025 08:02
Scudo, a dynamic memory allocator, prevented the exploitation of the CrabbyAVIF vulnerability.
First reported: 17.11.2025 08:02

1 source, 1 article
Show sources
- Rust Adoption Drives Android Memory Safety Bugs Below 20% for First Time — thehackernews.com — 17.11.2025 08:02

Summary

Timeline

Rust Adoption Reduces Android Memory Safety Bugs Below 20%

Information Snippets