Samsung reveals Could 2024 safety replace fixes 45 vulnerabilities

Samsung detailed its Could 2024 safety replace, rolling out to Galaxy units within the subsequent few weeks. The corporate revealed that 45 vulnerabilities in Galaxy telephones and tablets can be addressed. This implies the Could firmware have to be put in in your Galaxy gadget.

The Could 2024 safety replace hasn’t began rolling out to Samsung Galaxy units. That is because of the firm’s One UI 6.1 rollout phases, which have taken place in sure markets over the previous week. Galaxy S22’s rollout additionally been halted as a consequence of touchscreen failure difficulty.

Samsung disclosed Could 2024 safety patch consists of fixes for 45 safety vulnerabilities, with 33 being supplied by Google. The corporate additionally divided the vulnerabilities into their class, citing 33 vulnerabilities as ‘Important,’ whereas 26 are categorized as ‘Excessive’ in severity.

Important: CVE-2023-28582, CVE-2024-23706, CVE-2024-23700

Excessive: CVE-2024-0042, CVE-2024-20039, CVE-2024-20040, CVE-2024-21463, CVE-2023-33115, CVE-2023-33096, CVE-2023-33103, CVE-2023-33084, CVE-2023-33095, CVE-2023-33104, CVE-2023-33086, CVE-2023-33101, CVE-2023-33100, CVE-2023-33099, CVE-2024-21468, CVE-2024-21472, CVE-2024-0024, CVE-2024-0025, CVE-2024-23705, CVE-2024-23708, CVE-2024-0043, CVE-2024-23707, CVE-2024-23709, CVE-2024-23703, CVE-2024-23701, CVE-2024-23702

Average: CVE-2024-20021

The South Korean tech big additionally offers 25 SVE objects (listed beneath). SSI present in “Safety software program model”, SMR Could-2024 Launch 1 consists of all patches from Samsung and Google. You may examine the checklist of addressed SVE objects beneath.

1. SVE-2023-1778(CVE-2024-20866)
   • Authentication bypass vulnerability in Setupwizard
2. SVE-2023-2193(CVE-2024-20855)
   • Improper entry management vulnerability in multitasking framework
3. SVE-2023-2265(CVE-2024-20856)
   • Improper Authentication vulnerability in Safe Folder
4. SVE-2024-0041(CVE-2024-20857)
   • Improper entry management vulnerability in CocktailBarService
5. SVE-2024-0042(CVE-2024-20858)
   • Improper entry management vulnerability in CocktailBarService
6. SVE-2024-0070(CVE-2024-20859)
   • Improper entry management vulnerability in FactoryCamera
7. SVE-2024-0071(CVE-2024-20860)
   • Improper export of android utility elements vulnerability in TelephonyUI
8. SVE-2024-0092(CVE-2024-20861)
   • Use after free vulnerability in SveService
9. SVE-2024-0096(CVE-2024-20862)
   • Out-of-bounds write in SveService
10. SVE-2024-0185(CVE-2024-20863)
    • Improper enter validation vulnerability in SNAP in HAL
11. SVE-2024-0234(CVE-2024-20865)
    • Authentication bypass in bootloader
12. SVE-2024-0357(CVE-2024-20864)
    • Improper entry management vulnerability in DarManagerService

Keep up-to-date on Samsung Galaxy, One UI & Tech Stuffs by following Sammy Followers on X/Twitter. You may also uncover the most recent information, polls, opinions, and new options for Samsung & Google Apps, Galaxy Telephones, and the One UI/Android working system.

Do you want this put up? Kindly, tell us on X/Twitter: we love listening to your suggestions! In case you favor utilizing different social platforms in addition to X, comply with/be part of us on Google Information, Fb, and Telegram.