Following last week's uncovered info that 99 % of all Android devices out there have a vulnerability in Android's security model, ZDNet has now received the confirmation that Google has fixed this security hole and that the patch has been released to its OEMs. While Gina Scigliano, Google's Android Communications Manager, said that Google didn't have a statement (for ZDNet or the rest of us), she could "confirm that a patch has been provided to our partners - some OEMs, like Samsung, are already shipping the fix to the Android devices". She also said that "We (Google) have not seen any evidence of exploitation in Google Play or other app stores via our security scanning tools".
According to Scigliano, Google Play scans for this issue and "Verify Apps" would provide protection for Android users who download apps to their devices outside of Google Play.
As always, there's yet no way for end users to patch the security hole by themselves but users have to rely on the update by its phone and tablet manufacturer. And to make one thing clear, also HTC One S users can expect a patch. Just because HTC has confirmed that there will no upgrade to Android 4.2.2 and HTC Sense 5.(1) doesn't mean that they are not maintaining the HTC One S on Android 4.1.2 anymore.
Cheers ~ Arne