Samsung has published its November 2024 security bulletin, revealing the vulnerabilities patched this month. The latest security update for Galaxy phones and tablets addresses over 50 flaws in Android OS, One UI, and other system components. It also patches a high-severity vulnerability affecting several Exynos chips, including the Galaxy S24‘s Exynos 2400 and Watch 6’s Exynos W930.
November security update for Galaxy devices patches over 50 vulnerabilities
Samsung started rolling out the November security update, aka Security Maintenance Release (SMR), to eligible Galaxy devices in late October. The Galaxy Tab S7 FE received it first, followed by the Galaxy S24 and S23 series. Along with security fixes, the flagship models picked up Auto Blocker enhancements. The company has now released the full patch details.
As usual, the update contains dozens of Android OS patches from Google and partner vendors. Samsung says 38 patches released by Google are applicable to Galaxy devices. These include a high-severity flaw already known to be exploited by threat actors. Some of the vulnerabilities allowed local escalation of privilege or remote code execution without requiring additional privileges.
Additionally, Samsung is pushing fixes for a high-severity Exynos flaw caused by a bug in the GPRS protocol. It affects devices powered by the Exynos 9820, 9825, 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, and Exynos W930 chipsets. Samsung’s Modem 5123 and Modem 5300 are also affected. The October update also patched major Exynos flaws.
Other Samsung Vulnerabilities and Exposures (SVE) items — security flaws only affecting Galaxy devices — including a few high-severity issues potentially allowing local attackers to cause memory corruption or access data across multiple user profiles. Overall, the November SMR patches 52 vulnerabilities across the Galaxy family. Install the latest security update on your phone to keep it safe. You can check for updates from the Settings app. We will keep you posted as Samsung pushes the update to more Galaxy devices globally.
