Updates
Samsung March 2023 Security Patch: Fixes for Call, Keyboard, System UI and more
Samsung March 2023 security patch details go official, confirming fixes for a number of CVEs as well as One UI Keyboard, System UI, and more. As of March 6, the company has not started the latest patch’s rollout for Galaxy devices, but we believe it’s not too away now.
Follow our socials → Google News, Telegram, Twitter, Facebook
According to the info, March 2023 security patch for Samsung devices brings Google patches that are mentioned in the Android security bulletin. There are a number of common vulnerability exposures listed in the document that falls into different ranges including:
- Critical – 5
- High – 35
- Moderate – 0
- Already fixed – 4
- Not applicable – 5
Apart from this, the March 2023 patch also includes 23 One UI patches which Samsung calls SVE (Samsung Vulnerabilities and Exposures). Together with Android and One UI patches, the latest software update ensures the best security and privacy on Galaxy devices.
Severe issues that are patched in the March OTA:
Call application
Improper access control vulnerability in Call application prior to SMR Mar-2023 Release 1 allows local attackers to access sensitive information without proper permission. The patch adds proper permission to prevent improper access.
Samsung Keyboard
Improper authorization in Samsung Keyboard prior to SMR Mar-2023 Release 1 allows a physical attacker to access users’ text history on the lock screen. The patch removes the context menu on the lock screen.
Vulnerability in System UI
Improper privilege management vulnerability in PhoneStatusBarPolicy in System UI allows attackers to turn off Do not disturb via unprotected intent. Samsung’s March 2023 patch adds proper protection for the intent.
Galaxy Themes
Path traversal vulnerability in Galaxy Themes Service allows attackers to access arbitrary files with system uid.
The March update adds proper input validation.
Bluetooth
Improper access control vulnerability in Bluetooth prior allows attackers to send files via Bluetooth without related permission. The company has also patched this flaw with the latest OTA release, which affects Galaxy devices running Android 11 to 13.
Use after-free vulnerability in decon driver
This issue affected Galaxy devices running Android 11/12/13 with Exynos 2100 chipset (Galaxy S21 series). It allows attackers to cause memory access faults, which have been fixed with the addition of proper check logic to prevent use after free.
Here are the CVE items:
Critical
- CVE-2022-33232, CVE-2022-33243, CVE-2022-40514, CVE-2023-20951, CVE-2023-20954
High
- CVE-2022-0850, CVE-2022-41222, CVE-2023-20937, CVE-2023-20938, CVE-2023-20602, CVE-2022-33221, CVE-2022-33233, CVE-2022-33248, CVE-2022-33277, CVE-2022-47339, CVE-2022-47331
- CVE-2023-20906, CVE-2023-20911, CVE-2023-20917, CVE-2023-20947, CVE-2023-20963, CVE-2023-20956, CVE-2023-20958, CVE-2023-20964, CVE-2023-20926, CVE-2023-20931, CVE-2023-20936
- CVE-2023-20953, CVE-2023-20955, CVE-2023-20957, CVE-2023-20959, CVE-2023-20960, CVE-2023-20966, CVE-2022-4452, CVE-2022-20467, CVE-2023-20929, CVE-2023-20952, CVE-2023-20962, CVE-2022-20499, CVE-2023-20910
Moderate
- None
Already included in previous updates
- CVE-2022-40502, CVE-2022-40512, CVE-2022-33271, CVE-2022-33306
Not applicable to Samsung devices
- CVE-2022-39189, CVE-2022-39842, CVE-2022-33280, CVE-2022-34145, CVE-2022-34146
Send us carrier-locked or unlocked phones software update screenshot or information here – tip[at]sammyfans[dot]com
| Source |
Updates
Samsung releases December 2024 security update for Galaxy S24 FE
Samsung has pushed a new update for the Galaxy S24 FE smartphone, which installs the latest Android security patch released in December 2024 to improve system security. This update is rolling out in Korea and the company will soon make it available in more countries.
December 2024 update for Samsung Galaxy S24 FE update arrives with One UI build version S721NKSS2AXK5 and an installation package size of around 300MB. The update is rolling out gradually so it may take some hours or days to reach all models.
The fresh update is based on One UI 6.1.1 and Android 14. However, the update is eligible for the next major, One UI 7, update. Currently, Samsung is testing One UI 7 Beta on the Galaxy S24 series and will release a stable update with the next Galaxy S series next year.
Talking about the December 2024 security patch, this update fixes several issues around 45, to make the smartphone more secure and stable. Google fixes 6 critical vulnerabilities and 28 high-level ones. There is also 1 issue that was previously fixed in earlier updates and another that is not applicable to Samsung devices.
Samsung has also addressed 2 high-level vulnerabilities in its semiconductor products. Along with these fixes, Samsung has also provided 8 patches under its Samsung Vulnerabilities and Exposures (SVE) items. These focus on issues with the Theme Center, Galaxy Watch Bluetooth, SmartSwitch, and Dex Mode.
To install the update, you just need to follow a few easy steps. Open Settings, tap on Software Updates, and click on Download and Install.
December 2024 security update rolls out to Galaxy Z Fold Special Edition
Updates
December 2024 security update rolls out to Galaxy Z Fold Special Edition
Samsung Galaxy Z Fold Special Edition users are getting a fresh update with the December 2024 security patch in Korea. This update installs the latest Android security patch to improve system security and stability.
December 2024 security patch fixes over 45 vulnerabilities, including 6 critical and 28 high-level issues. It also resolves one issue previously addressed and another not relevant to Samsung devices.
In addition, Samsung has patched 2 high-level vulnerabilities in its semiconductor products and provided 8 SVE patches covering the Theme Center, Galaxy Watch Bluetooth, SmartSwitch, and Dex Mode to make the device more secure.
Samsung rolls out the December 2024 security update for Samsung Galaxy Z Fold Special Edition via One UI build version F958NKSS2AXKC. Users will have to download around 400MB package to install the update.
The update is rolling out gradually so it may take some hours or days to reach all models. It is currently available in Korea and the company will soon expand it to more countries.
Users can check new software updates manually with a handful of simple steps. Firstly, visit your Galaxy device’s “System Settings,” once done, scroll down and tap the “Software update” tab, followed by the “Download and install” button.
Aside from this, Samsung has rolled out the beta version of One UI 7 for the Galaxy S24 series and announced to make the stable version available with the Galaxy S25 series launch. Samsung Galaxy Z Fold Special Edition is also eligible for the One UI 7.
Next Samsung One UI 7 Beta updates to bring smooth, dynamic animations
Updates
Samsung Galaxy S23 receiving December 2024 update, next could be One UI 7 Beta
Samsung is currently working to expand the One UI 7 Beta update for more Galaxy S24 models. Meanwhile, the company is also rolling out the December 2024 security update for Samsung Galaxy S23, Galaxy S23 Plus, and Galaxy S23 Ultra phones.
December 2024 security update for the Samsung Galaxy S23 series is currently live in Korea and the company will soon make it available for more countries soon. This update makes your devices ready for the next firmware, which could be of One UI 7 beta.
Users of the Galaxy S23 series can verify the latest security update through the One UI build version given below:
- S911NKSS5CXKA – Galaxy S23
- S916NKSS5CXKA – Galaxy S23 Plus
- S918NKSS5CXKA – Galaxy S23 Ultra
December 2024 security patch addresses more than 45 security vulnerabilities. Google patches in this update cover six critical vulnerabilities and 28 high-level ones. There is also 1 issue that was previously fixed in earlier updates and another that is not applicable to Samsung devices.
Samsung has also addressed 2 high-level vulnerabilities in its semiconductor products. Along with these fixes, Samsung has also provided 8 patches under its Samsung Vulnerabilities and Exposures (SVE) items. These focus on issues with the Theme Center, Galaxy Watch Bluetooth, SmartSwitch, and Dex Mode.
To access a fresh update on your Samsung Galaxy S23, go to the Settings app, tap on Software Update, and then select Download and Install. This will initiate the update process, and once completed, you’ll enjoy a more secure smartphone experience.
It is expected that Samsung will soon release the One UI 7 Beta update for the Galaxy S23 series, so more users can enjoy amazing features and provide feedback. One UI 7 Beta is currently available for the Galaxy S24 series in limited countries.
Samsung Galaxy S23 series could get the next update as One UI 7 beta. Install the December 2024 update now to make your device ready for the upcoming update
Samsung Galaxy S24, S24 Plus and S24 Ultra get December 2024 security update