When we discovered this bug in iOS, we immediately tested it on an Android phone. Private Wi-Fi addresses are called “randomized MAC addresses” in Android world. We couldn’t spot the real MAC address in the network traffic that the Android device was sending during testing. It’s worth noting that this feature has been available since Android 8.0, which was released in 2017, as opposed to iOS 14, which was released in 2020.
I have a lot of issues with Android, but AOSP being source available lets you know if CVE’s are fixed instead of relying on the company to tell you the truth.
From comments:
I have a lot of issues with Android, but AOSP being source available lets you know if CVE’s are fixed instead of relying on the company to tell you the truth.
That’s for sure! I assume things like the goto fail bug would be found by the community pretty quickly.