Updates

Samsung June 2023 One UI update patches Exynos and Knox security flaws

Published

1 year ago

June 5, 2023

Today, Samsung officially announced the June 2023 One UI update bulletin. As always, this new security package comes with fixes for CVE items from Google and SVE items from Samsung. This will ensure the best level of system security on your Galaxy device.

Follow our socials → Google News, Telegram, Twitter, Facebook

Samsung releases new software updates for major flagship models as part of the monthly Security Maintenance Release (SMR) process. All the flagship devices and select mid-range A series phones will get all the latest patches and improvements this month.

Below, you can check Samsung June 2023 security update content for One UI and Android.

One UI

1. SVE-2023-0352 (CVE-2023-21513)

This SVE may have affected Galaxy devices running Android 11, 12 and 13. Per the details, improper privilege management vulnerability in CC Mode prior to SMR Jun-2023 Release 1 allows physical attackers to manipulate device to operate in way that results in unexpected behavior in CC Mode under specific condition.

2. SVE-2022-2836 (CVE-2023-21517)

Samsung says select Galaxy devices equipped with Exynos CP chipsets were affected by this flaw. June patch adds proper buffer size check logic. Details: Heap out-of-bound write vulnerability in Exynos baseband prior to SMR Jun-2023 Release 1 allows remote attacker to execute arbitrary code.

3. SVE-2022-2743 (CVE-2023-21512)

Improper Knox ID validation logic in the notification framework allows local attackers to read work profile notifications without proper access permission. Samsung’s June patch adds proper Knox ID validation to prevent improper access to notifications.

Android

Recently, Google revealed the June 2023 Android security bulletin, detailing the content of the new patch update. As the One UI is powered by Android, Galaxy device owners will get a complete security package equipped with fixes for 3 critical, and 47 high-level of CVEs.

Critical

CVE-2023-21127, CVE-2023-21108, CVE-2023-21130

High

CVE-2023-26085, CVE-2022-46396, CVE-2022-46891, CVE-2022-46395, CVE-2022-46394, CVE-2021-0877, CVE-2023-21102, CVE-2023-21106, CVE-2023-20697, CVE-2023-20698, CVE-2023-20726, CVE-2023-20694, CVE-2023-20695, CVE-2023-20696, CVE-2023-21665, CVE-2023-21666

CVE-2022-40508, CVE-2022-40504, CVE-2022-34144, CVE-2022-33305, CVE-2022-47487, CVE-2022-47469, CVE-2022-47470, CVE-2022-47486, CVE-2022-47488, CVE-2023-0266, CVE-2023-21126, CVE-2023-21128, CVE-2023-21129, CVE-2023-21131, CVE-2023-21139, CVE-2023-21105

CVE-2023-21136, CVE-2023-21137, CVE-2023-21143, CVE-2023-20965, CVE-2023-21115, CVE-2023-21121, CVE-2023-21122, CVE-2023-21123, CVE-2023-21124, CVE-2023-21135, CVE-2023-21138, CVE-2023-21095, CVE-2023-21141, CVE-2023-21142, CVE-2023-21144

Not applicable to Samsung devices

CVE-2023-20699, CVE-2022-25713, CVE-2022-33273

| Source |

Related Topics:June 2023 SAMSUNG UPDATES