Google Injects Rust Into Pixel 10 Modem Firmware to Kill Memory Bugs

Google opted to embed Rust components directly into the Pixel 10’s modem firmware rather than rewrite the entire legacy C/C++ codebase. The move follows years of Project Zero research that uncovered over two dozen vulnerabilities in Exynos-based modems - 18 rated severe - including remotely exploitable code execution flaws. Cellular basebands run their own operating systems with decades of accumulated technical debt, making them a persistent and attractive attack surface.

The core problem is memory safety. Buffer overflows and related bugs are endemic to C/C++ modem code, but a full rewrite is impractical given the real-time performance constraints and the sheer volume of 3GPP-compliant firmware. Rust fits the gap because it enforces memory safety at compile time without relying on garbage collection, preserving the deterministic performance that modem firmware demands. Google’s approach treats Rust as a surgical insertion into the existing stack rather than a wholesale replacement.