The Android team posted something on that topic about 6 months ago [0, HN discussion at 1].
One potentially relevant highlight:
> To date, there have been zero memory safety vulnerabilities discovered in Android’s Rust code.
> Historical vulnerability density is greater than 1/kLOC (1 vulnerability per thousand lines of code) in many of Android’s C/C++ components (e.g. media, Bluetooth, NFC, etc). Based on this historical vulnerability density, it’s likely that using Rust has already prevented hundreds of vulnerabilities from reaching production.
The post has more details, and I think the entire thing is worth a read.
One potentially relevant highlight:
> To date, there have been zero memory safety vulnerabilities discovered in Android’s Rust code.
> Historical vulnerability density is greater than 1/kLOC (1 vulnerability per thousand lines of code) in many of Android’s C/C++ components (e.g. media, Bluetooth, NFC, etc). Based on this historical vulnerability density, it’s likely that using Rust has already prevented hundreds of vulnerabilities from reaching production.
The post has more details, and I think the entire thing is worth a read.
[0]: https://security.googleblog.com/2022/12/memory-safe-language...
[1]: https://news.ycombinator.com/item?id=33819616