Samsung has released its updated monthly security bulletin detailing the December 2024 patch. This month’s security update addresses over 40 vulnerabilities, the bulk of which come from Google and partner vendors. The company will soon roll out these patches to eligible Galaxy phones and tablets worldwide.
Samsung’s December security update patches over 40 vulnerabilities
The December SMR (Security Maintenance Release) for Galaxy devices addresses 44 vulnerabilities, Samsung confirms. These include 34 Android OS patches from Google and partners, two Samsung Semiconductor patches, and eight Samsung Mobile patches, aka Samsung Vulnerabilities and Exposures (SVE) items.
Among the 34 Android OS patches are 28 high-severity and six critical vulnerabilities. If exploited, critical flaws could allow remote code execution, enabling threat actors to remotely control your Galaxy phone or tablet and launch more devastating attacks. These vulnerabilities also affect Android devices from other brands.
The Samsung Semiconductor flaws exist on devices using the affected Exynos processors and modems. Samsung says both vulnerabilities patched this month were high-severity issues potentially allowing Out-of-Bound write or Denial of Service. The Galaxy S24’s Exynos 2400 and the Galax Watch Ultra’s Exynos W1000 chips are among the affected models.
Last but not least, Samsung patched eight Galaxy vulnerabilities this month, at least one of which is a critical flaw. It allows remote attackers to execute arbitrary code. The company also patched moderate and high-severity issues in Samsung DeX, SmartSwitch, Theme Center, and Settings with the December SMR.
Samsung will roll out these security fixes to dozens of Galaxy devices over the next few weeks. The rollout could begin soon, though it will take a while for all eligible models to receive the update. You can always check for updates manually from the Settings app. Samsung is also preparing to release the One UI 7.0 beta in the coming days. Stay tuned for more information about these updates.
