Hacker News new | past | comments | ask | show | jobs | submit login

The Dalvik system that runs on top does indeed put apps into their own named processes with restricted access etc, quite a good idea imho!

But the entire system as a whole doesn't get updates to lower parts. E.g. Updating your java app doesn't solve the problems in the underlying C libraries the system uses. We're at the mercy of vendors for that, if ever.

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact