Updates
Samsung March 2023 Security Patch: Fixes for Call, Keyboard, System UI and more
Samsung March 2023 security patch details go official, confirming fixes for a number of CVEs as well as One UI Keyboard, System UI, and more. As of March 6, the company has not started the latest patch’s rollout for Galaxy devices, but we believe it’s not too away now.
Follow our socials → Google News, Telegram, Twitter, Facebook
According to the info, March 2023 security patch for Samsung devices brings Google patches that are mentioned in the Android security bulletin. There are a number of common vulnerability exposures listed in the document that falls into different ranges including:
- Critical – 5
- High – 35
- Moderate – 0
- Already fixed – 4
- Not applicable – 5
Apart from this, the March 2023 patch also includes 23 One UI patches which Samsung calls SVE (Samsung Vulnerabilities and Exposures). Together with Android and One UI patches, the latest software update ensures the best security and privacy on Galaxy devices.
Severe issues that are patched in the March OTA:
Call application
Improper access control vulnerability in Call application prior to SMR Mar-2023 Release 1 allows local attackers to access sensitive information without proper permission. The patch adds proper permission to prevent improper access.
Samsung Keyboard
Improper authorization in Samsung Keyboard prior to SMR Mar-2023 Release 1 allows a physical attacker to access users’ text history on the lock screen. The patch removes the context menu on the lock screen.
Vulnerability in System UI
Improper privilege management vulnerability in PhoneStatusBarPolicy in System UI allows attackers to turn off Do not disturb via unprotected intent. Samsung’s March 2023 patch adds proper protection for the intent.
Galaxy Themes
Path traversal vulnerability in Galaxy Themes Service allows attackers to access arbitrary files with system uid.
The March update adds proper input validation.
Bluetooth
Improper access control vulnerability in Bluetooth prior allows attackers to send files via Bluetooth without related permission. The company has also patched this flaw with the latest OTA release, which affects Galaxy devices running Android 11 to 13.
Use after-free vulnerability in decon driver
This issue affected Galaxy devices running Android 11/12/13 with Exynos 2100 chipset (Galaxy S21 series). It allows attackers to cause memory access faults, which have been fixed with the addition of proper check logic to prevent use after free.
Here are the CVE items:
Critical
- CVE-2022-33232, CVE-2022-33243, CVE-2022-40514, CVE-2023-20951, CVE-2023-20954
High
- CVE-2022-0850, CVE-2022-41222, CVE-2023-20937, CVE-2023-20938, CVE-2023-20602, CVE-2022-33221, CVE-2022-33233, CVE-2022-33248, CVE-2022-33277, CVE-2022-47339, CVE-2022-47331
- CVE-2023-20906, CVE-2023-20911, CVE-2023-20917, CVE-2023-20947, CVE-2023-20963, CVE-2023-20956, CVE-2023-20958, CVE-2023-20964, CVE-2023-20926, CVE-2023-20931, CVE-2023-20936
- CVE-2023-20953, CVE-2023-20955, CVE-2023-20957, CVE-2023-20959, CVE-2023-20960, CVE-2023-20966, CVE-2022-4452, CVE-2022-20467, CVE-2023-20929, CVE-2023-20952, CVE-2023-20962, CVE-2022-20499, CVE-2023-20910
Moderate
- None
Already included in previous updates
- CVE-2022-40502, CVE-2022-40512, CVE-2022-33271, CVE-2022-33306
Not applicable to Samsung devices
- CVE-2022-39189, CVE-2022-39842, CVE-2022-33280, CVE-2022-34145, CVE-2022-34146
Send us carrier-locked or unlocked phones software update screenshot or information here – tip[at]sammyfans[dot]com
| Source |
Samsung has released a new update with the November 2024 security patch for Galaxy Z Flip 5 and Galaxy Z Fold 5 smartphones. The update is available for users in Korea and the company will soon expand it to more countries.
November 2024 security update for Samsung Galaxy Z Flip 5 and Galaxy Z Fold 5 smartphones F731NKSU4DXK8 and F946NKSU4DXK8 respectively. It is an initial rollout so it may take some hours or days to reach all models.
The fresh security patch fixes 52 vulnerabilities in Android and Samsung software. Google has patched 38 high-level issues, and one CVE doesn’t apply to Galaxy devices. Samsung has also addressed 13 issues, including bugs related to multiple users, Dex Mode, Galaxy Watch, and Settings.
This update improves security and device performance by bringing bug fixes and enhancements. Overall, users will get smoother performance after installing the update.
If you have received the notification of the update then install it now to get a bug-free experience. You can also check the update by visiting the Settings app on your smartphone and opening the Software Update section.
Now, click on the Download and Install option. If any update is available, you can follow the on-screen instructions to install the update on your Galaxy smartphone.
These foldable smartphones are currently running Android 14 based One UI 6.1.1. It will get the major One UI 7 based on the Android 15 update next year, after the Samsung Galaxy S25 series launch.
November 2024 Update Plan: Samsung offers security patches for over 140 Galaxy devices
Samsung recently announced the One UI 6 Watch rollout for older Galaxy watches. Now, the company has started rolling out the November 2024 security update for Samsung Galaxy Watch 7.
November 2024 security update for the Samsung Galaxy Watch 7 is currently live for users in Korea and the company will soon expand it to more countries. This update arrives with build version L310XXU1AXK6 and an installation package size of 245.62MB.
The fresh update improves the stability of the Galaxy Watch 7 to provide a more reliable performance. It brings some improvements to make the device more secure and stable. Also, it installs the latest Android security patch release in November 2024 for better security.
By fixing existing issues and enhancing performance, Samsung aims to deliver a smoother and more dependable user experience. Although the update does not introduce new features or changes, it provides a better and smoother performance.
Samsung recommends Galaxy Watch 7 users install this update to take advantage of the enhanced system stability. By keeping the device updated, users can get benefits from the new feature and enhanced security.
To install the update, users need to connect their Galaxy Watch 7 to a smartphone via the Galaxy Wearable app. From there, navigate to Watch Settings, select Watch Software Update, and choose the Download and Install option.
Samsung reveals what One UI 6 Watch update brings to Galaxy Watch
Samsung Galaxy A53 and Galaxy A23 users are receiving a November 2024 security update on the Verizon network carrier in the US. The update is rolling out for locked models, and other carriers could get this update in the coming days or weeks.
Users of the Samsung Galaxy A53 and Galaxy A23 smartphones can verify the November 2024 security update via One UI builds given below:
- Galaxy A53 – A536VSQSEEXJA
- Galaxy A23 – A236VSQS7DXJ5
November 2024 Security Patch Details
November 2024 security update addresses 52 vulnerabilities across Android and Samsung’s software. Google has resolved 38 high-priority issues, while one CVE is not relevant to Galaxy devices.
Samsung’s patches include fixes for 13 vulnerabilities, primarily impacting user profiles, Dex Mode, Galaxy Watch, and certain system features like Settings and Maintenance Mode. This update enhances both the security and performance of Galaxy devices.
How to Update:
Samsung users can check new software updates manually with a handful of simple steps. Firstly, visit your Galaxy device’s “System Settings,” once done, scroll down and tap the “Software update” tab, followed by the “Download and install” button.
One UI 7
One UI 7 Beta update was announced to be released at the end of the year, with plans to stable release in early 2025 along with the Samsung Galaxy S25 series. Reports claim that the Beta Program is about to start in the coming days for the Galaxy S24 series.