This has hit the tech press recently:
Snapdragon chip flaws put >1 billion Android phones at risk of data theft (ArsTechnica)
Over 400 vulnerabilities on Qualcomm’s Snapdragon chip threaten mobile phones’ usability worldwide (CheckPoint)
Note that the headlines are both a little misleading: this isn’t a chip flaw, it’s vulnerabilities in the SDK (Software Development Kit) for the DSP in the Qualcomm Snapdragon chips.
This is pretty bad (read the articles to see how bad). Reportedly, Qualcomm has released a fix, but Google hasn’t incorporated it into Android.
Once Google has updated Android, how will fixes for these “400” vulnerabilities be incorporated into /e/? Will they be available for Nougat and Oreo, or only Pie and “Q”?