Nextwave Wireless (fka WAVE)

[revlis]

In other words, chillax. It's going to happen. Just sit tight.

Why no rush? Android, as we have found out a time or two, works in the sandbox method. This means that whatever is done within an application, stays there unless you grant permissions to an app to cross over somewhere else. The stuff that happens on the web should stay confined to the web. There should be no fear of someone, or something, looking into your emails or phone contacts, unless you told the app to.

This goes back to the old standby rule. If you have to question something, then don't mess with it. Don't open email from people you don't trust and don't visit sites you aren't too keen on. And for Android apps, don't install a card game that wants to access your phone book, unless you know why.

For more on the unnecessary tension and drama surrounding this, head over to Download Squad.

The Android Security Team responded by contacting PacketVideo, T-Mobile, and oCERT, a public Computer Emergency Response Team. PacketVideo developed a fix on February 5th, and they patched Open Source Android two days later. oCERT assisted PacketVideo with coordinating the fix, and they published an advisory detailing this issue. We offered the patch to T-Mobile when it became available, and G1 users will be updated at T-Mobile's discretion.

http://www.androidguys.com/2009/02/12/dont-worry-about-your-android-browser-so-much/comment-page-1/