Software cannot secure hardware bugs: BlackBerry Priv affected amongst others.
Android bug fear in 900 million phones - BBC News
I have been posing that question here for over two years.
Again this proves that without controlling hardware, including designing your own integrated circuits and not buying them from others, a company like BlackBerry cannot claim security.
It's interesting that Samsung with Exynos processor (and Apple) are not on the list because they do not use the Qualcomm chip. They have their own.
This also goes back to the security (lack thereof) of a phone designed and assembled in China whose hardware integrity one might not fully control.