Google Pixel and Pixel XL users are now worried as a security loophole allows apps to track the smartphones. The search engine giant is now working on a fix for the vulnerability that may harm the privacy of their customers.
The vulnerability or loophole in the security of the Google Pixel and Pixel XL smartphones allows third-party applications to identify the unique serial numbers and then track them individually. HTC might be at fault as the camera modules they manufactured for the smartphones has a unique serial number which may be used by any third-party app.
"Camera sensor's serial number, stored in system property htc.camera.sensor.front_SN, appears to change between different devices and could thus facilitate tracking. This commit restricts access to this system property to cameraserver and dumpstate and shell SELinux domains," wrote Google senior software engineer Alex Klyubin in an official Android Open Source Project (AOSP) post.
Google has already sent a patch that blocks the serial number from being read by the apps. However, the property is still seen via ADB. There is no word yet on when the company will roll out the patch for the public.
As of this writing, there have been no reports from Google Pixel or Pixel XL users being tracked by apps through the unique serial number on the camera. The company could release the patch along with the monthly Android security update.
The fast response time of Google could be attributed to the fact that it is their smartphones that are at risk. OTA updates may include the unique serial number patch for the Google Pixel and Pixel XL users, Digital Trends reported.
Google Pixel and Pixel XL are two of the top Android smartphones of 2016. Customers who already bought the devices should just wait for Google's official rollout of the patch to protect themselves from the unwanted tracking.
Watch a review of the Pixel XL in the video below: