Bleeping Computer

Critical bug in Android could allow access to users' media files

Security analysts have found that Android devices running on Qualcomm and MediaTek chipsets were vulnerable to remote code execution due to a flaw in the implementation of the Apple Lossless Audio ...
Android Authority

ALAC bug left millions of Android devices vulnerable to takeover

A major vulnerability impacted the vast majority of 2021 Android phones. The issue is caused by compromised ALAC audio code. The vulnerable code was included in MediaTek and Qualcomm audio decoders. A ...
Indiatimes

Explained: What is the ALAC bug and how it left millions of Android devices exposed to attacks

Apple developed an audio format called Apple Lossless Audio Codec (ALAC) in 2004 to use in iTunes. This audio format offered lossless data compression. The format was adopted by companies worldwide ...
The Verge

Apple converts ALAC audio format to open source

Posts from this author will be added to your daily email digest and your homepage feed. is a former senior reviewer who worked at The Verge from 2011 until May 2025. His coverage areas included audio, ...
ZDNet

Android security: Flaw in an audio codec left two-thirds of smartphones at risk of snooping, say researchers

Millions of Android devices were vulnerable to a remote code execution attack due to flaws in an audio codec that Apple open-sourced years ago but which hasn't been patched since. Researchers at Check ...