Samsung SMR: December 2024 Security patch released

Galaxy users waiting for the Android 15 and One UI 7 beta programs, meanwhile, Samsung has now released the details of the December 2024 security patch for its Galaxy phones and tablets. This patch includes patches from Google and Samsung to boost security and stability.

Samsung SMR: December 2024 security patch released

According to Samsung’s security bulletin for December 2024, its new security patch fixes 46 security fixes found in Galaxy smartphones and tablets, Of these 46 patches, 36 patches came from Google, addressing 6 critical and 28 high levels of CVEs for the Android operating system. However, 1 CVE is not relevant to Galaxy devices.

In addition to Google patches, Samsung offers 10 SVE items to enhance the Galaxy experience. The fresh security patch fices lots of issues related to Theme Center, Galaxy Watch Bluetooth, SmartSwitch, Dex Mode, and more. To get more information bout security patches from Samsung, visit this page. To know more details about Google’s fixes, visit this website.

As the company continues to develop the One UI 7 update, which will likely emerge in the coming weeks. Notable, Samsung is going to release the beta update soon with the Galaxy S24 series.

More Galaxy phones, including the Galaxy S23, Galaxy Z Fold 6, Galaxy Z Flip 6, as well as Galaxy A55 after internal testing is complete.

Samsung December 2024 security patch released

Google

Critical

  • CVE-2024-38408, CVE-2024-43096, CVE-2024-43770, CVE-2024-43771, CVE-2024-49747, CVE-2024-49748

High

  • CVE-2024-34747, CVE-2024-40671, CVE-2024-34729, CVE-2024-31337, CVE-2023-35659, CVE-2023-35686, CVE-2024-23715, CVE-2024-36978, CVE-2024-46740, CVE-2024-20106, CVE-2024-20104, CVE-2024-23385, CVE-2024-38403, CVE-2024-38424, CVE-2024-38415, CVE-2024-38423, CVE-2024-38421, CVE-2024-21455, CVE-2024-43047, CVE-2024-38405, CVE-2024-43762, CVE-2024-43764, CVE-2024-43769, CVE-2024-43767, CVE-2024-43097, CVE-2024-43768, CVE-2024-43766, CVE-2024-43763

Moderate

  • None

Already included in previous updates

  • CVE-2024-38402

Not applicable to Samsung devices

  • CVE-2024-38422

Samsung Semiconductor

High

  • CVE-2024-39343, CVE-2024-39890

Samsung

  • SVE-2024-1485(CVE-2024-49410): Out-of-bounds write in libswmfextractor.so
  • SVE-2024-1808(CVE-2024-49411): Path Traversal in ThemeCenter
  • SVE-2024-1845(CVE-2024-49415): Out-of-bound write in libsaped.so
  • SVE-2024-1885(CVE-2024-49412): Improper input validation in Settings
  • SVE-2024-2044(CVE-2024-49413): Improper Verification of Cryptographic Signature in SmartSwitch
  • SVE-2024-2166(CVE-2024-49414): Authentication Bypass Using an Alternate Path in Dex Mode

Leave a Comment

Your email address will not be published. Required fields are marked *

Scroll to Top