What surprises me about the list of CVEs is how many of them affect both Android and iOS. One would assume they are two completely independent codebases.
Many mobile apps rely on shared components/libs/frameworks that are either developed by the company or are FOSS (libpl_droidsonroids_gif for example). In either case...they are platform agnostic and usually written in C.
And as we all know C is full of memory handling problems like overflows.
Hopefully in 2020 and beyond people will be developing these shared components in Rust instead.
Hopefully in 2020 and beyond people will be developing these shared components in Rust instead.