Updates
Samsung August 2021 Security Patch Details – New Fixes [CVEs/SVEs]
Samsung has recently released its updated security bulletin, which details the exact changes that come with the August 2021 security patch for Galaxy devices. The company’s latest security update brings fixes for dozens of vulnerabilities and exploits for enhanced system stability.
According to the South Korean tech giant, the August 2021 security patch update includes fixes for 38 CVEs in which 3 are critical, 23 are high, 9 are moderate, 1 already included in previous updates, and 3 do not apply to Samsung devices.
Stay connected with us on Telegram
In addition to the above-mentioned fixes for Android OS from Google, Samsung also added fixes for 8 SVEs specifically for Galaxy devices. You can see the latest August 2021 security patch CVEs fixes below, followed by SVEs fixes.
August 2021 Security Patch
Critical
CVE-2021-0592, CVE-2021-1965
High
CVE-2021-1931, CVE-2021-1940, CVE-2021-1953, CVE-2021-1943, CVE-2021-1964, CVE-2021-1907, CVE-2021-1955, CVE-2021-1945, CVE-2021-1970, CVE-2021-1954, CVE-2020-0368, CVE-2021-0514, CVE-2021-0515, CVE-2021-0603, CVE-2021-0640, CVE-2021-0645, CVE-2021-0646, CVE-2021-0519, CVE-2021-0591, CVE-2021-0593, CVE-2021-0584, CVE-2021-0641, CVE-2021-0642
Moderate
CVE-2021-0555, CVE-2020-1971, CVE-2021-0567, CVE-2021-0570, CVE-2021-0572, CVE-2021-0557, CVE-2021-0558, CVE-2021-0559, CVE-2021-0561
Already included in previous updates
CVE-2021-1938
Not applicable to Samsung devices
CVE-2020-11307, CVE-2021-0577, CVE-2021-0550
As said already, Samsung offers 8 SVE items described below in order to increase Galaxy device owners’ confidence on security of Samsung mobile phones. Samsung security index (SSI), found in “Security software version”, SMR August-2021 Release 1 includes all patches from Samsung and Google
SVE-2021-20831 (CVE-2021-25443): UAF in conn_gadget driver
Severity: Low
Affected versions: O(8.1), P(9.0), Q(10.0), R(11.0)
Reported on: February 26, 2021
Disclosure status: Privately disclosed.
A use after free vulnerability in conn_gadget driver prior to SMR AUG-2021 Release 1 allows malicious action by an attacker.
The patch adds proper check logic to prevent use after free.
SVE-2021-21948 (CVE-2021-25444): IV reuse in Keymaster TA
Severity: High
Affected versions: O(8.1), P(9.0), Q(10.0)
Reported on: May 25, 2021
Disclosure status: Privately disclosed.
An IV reuse vulnerability in keymaster prior to SMR AUG-2021 Release 1 allows decryption of custom keyblob with privileged process.
The patch prevents reusing IV by blocking addition of custom IV.
Updates
Samsung rolls out second November 2024 update to Galaxy S24 series
We are in December 2024 and Samsung has started releasing the second November 2024 security update for the Galaxy S24 series. The update is currently available for users in Europe and may expand to more countries soon.
Users of the Samsung Galaxy S24, Galaxy S24 Plus, and Galaxy S24 Ultra are getting a second November 2024 security update via the One UI build version S921BXXU4AXK4, S926BXXU4AXK4, and S928BXXU4AXK4 respectively.
The fresh update enhances the stability of some functions to provide a better experience. In addition, it also improves the security of the device by fixing some bugs for smoother performance. However, the exact details of the enhancements are not given in the changelog.
Users will have to download a 570 MB package to install the firmware update on their smartphone. For installation, you just need to visit Settings >> Software Update >> Download and install.
Aside from this, Samsung is regularly working to start the One UI 7 Beta Program soon for the Galaxy S24 series. Recently, a new build appeared for the Galaxy S24 series, suggesting the beta update is just around the corner.
If you are using a Galaxy S24 smartphone in Europe, install the update now to get enhanced security. In addition, it is the way towards the One UI 7 Beta.
Samsung moves closer to One UI 7 Beta release for Galaxy S24
Updates
Galaxy Watch 7 November 2024 security update live in Europe
Samsung is rolling out the November 2024 security update for the Galaxy Watch 7 in Europe, after Korea. This update is important as it’s the first security patch for the watch since it was released in July.
Before this, the Galaxy Watch 7 had been criticized for not getting updates on time, with some models still using security patches from months before the watch was even launched.
November 2024 security update is available for Galaxy Watch 7 Bluetooth models (SM-L300, SM-L310) in Europe with firmware version ending with XXU1AXK6. However, not all models are getting the update just yet.
The update is currently not available for the 4G versions of the Galaxy Watch 7 (SM-L305F, SM-L315F) or the Galaxy Watch Ultra (SM-L705F). Samsung is expected to release the update for these models soon.
The fresh update improves the watch’s stability and reliability. The most essential part is that it adds the latest security patch for November 2024 as it makes the device more secure.
Users will have to install a 245 MB software package to install the update. You can also check for the update manually by connecting the watch to your phone, opening the Wearable app then, going to the Watch 7 settings in the app and selecting Update watch software.
Samsung releases November 2024 security update for Galaxy Watch 7
Updates
Samsung Galaxy Z Fold Special Edition begins its update journey with November 2024 Patch
Samsung has pushed the first update for the limited-release foldable phone, Galaxy Z Fold Special Edition, which installs the November 2024 security patch. The fresh update is based on One UI 6.1.1 and Android 14.
The first update for Samsung Galaxy Z Fold Special Edition is rolling out in Korea and the company will soon make it available for all models. Users can verify the November 2024 security update with One UI build version F958NKSU2AXK4 and an installation package size of around 500MB.
The fresh update delivers the usual security fixes and may also include performance enhancements, bug fixes, and stability improvements. However, Samsung has not provided any specific details in the changelog.
Notably, November 2024 security fixes 52 vulnerabilities in Android and Samsung software. Google has patched 38 high-level issues, and one CVE doesn’t apply to Galaxy devices. Samsung has also addressed 13 issues, including bugs related to multiple users, Dex Mode, Galaxy Watch, and Settings. These patches aim to improve security and device performance.
For those with a Samsung Galaxy Z Fold Special Edition, updating is easy. Simply go to the Settings app, navigate to “Software update,” and select “Download and install” to receive the patch.
The update ensures that the device remains secure, stable, and possibly more efficient, though it may not include any major feature changes.