Samsung has published the full details of its April 2025 security update, outlining the latest fixes and improvements for Galaxy devices. As usual, the update addresses a mix of Android OS and Samsung-specific vulnerabilities. The new SMR (Security Maintenance Release) is already rolling out to select models, with more devices to follow soon.
Samsung details its April 2025 security update for Galaxy devices
These monthly SMRs for Galaxy smartphones and tablets address security vulnerabilities across Android OS and Galaxy components. The April 2025 release contains four critical and 36 high-severity Android OS vulnerability patches. Additionally, Samsung patched a high-severity Samsung Semiconductor vulnerability. This flaw affects a bunch of Exynos chips, including the Galaxy S24’s Exynos 2400.
On top of this, the April SMR addresses 21 Samsung Vulnerabilities and Exposures (SVE) items. These are security flaws exclusive to Galaxy devices. They do not exist in Android products from other brands. This month, Samsung is rolling out fixes for a critical flaw (improper access control in HDCP trustlet) allowing local attackers with shell privilege to escalate their privileges to root.
This update also fixes high-severity issues in Samsung’s Clipboard Service, wireless download protocol in Galaxy Watches, and many other Galaxy components. The update addresses a bunch of moderate flaws as well. As usual, Samsung hasn’t disclosed all patches due to security reasons. This gives users more time to install the patches before the flaws go public, potentially allowing threat actors to devise attacks.
The April 2025 security update has already rolled out to Samsung’s Galaxy S24, Galaxy Z Fold 6, Fold SE, and Flip 6 with the One UI 7 update. Samsung will gradually push these 60-odd security fixes to more devices in the coming weeks. Some will get it with One UI 7, while others will receive a standalone security patch. Galaxy users can check for updates from Settings > Software update > Download and install.
