{"id":83312,"date":"2025-05-08T01:20:09","date_gmt":"2025-05-08T01:20:09","guid":{"rendered":"https:\/\/www.europesays.com\/uk\/83312\/"},"modified":"2025-05-08T01:20:09","modified_gmt":"2025-05-08T01:20:09","slug":"samsung-galaxy-deadline-you-have-3-weeks-to-update-your-phone","status":"publish","type":"post","link":"https:\/\/www.europesays.com\/uk\/83312\/","title":{"rendered":"Samsung Galaxy Deadline\u2014You Have 3 Weeks To Update Your Phone"},"content":{"rendered":"<p class=\"color-body light-text\" role=\"button\">Samsung\u2019s new update deadline confirmed.<\/p>\n<p>AFP via Getty Images<\/p>\n<p>Android is under attack \u2014 again. Google <a class=\"color-link\" href=\"https:\/\/www.forbes.com\/sites\/zakdoffman\/2025\/05\/06\/googles-android-update-bad-news-for-millions-of-samsung-owners\/\" data-ga-track=\"InternalLink:https:\/\/www.forbes.com\/sites\/zakdoffman\/2025\/05\/06\/googles-android-update-bad-news-for-millions-of-samsung-owners\/\" target=\"_self\" aria-label=\"confirmed as much this week\" rel=\"noopener\">confirmed as much this week<\/a>, before issuing an <a class=\"color-link\" href=\"https:\/\/www.forbes.com\/sites\/zakdoffman\/2025\/05\/07\/googles-unbeatable-pixel-update-leaves-other-androids-behind\/\" data-ga-track=\"InternalLink:https:\/\/www.forbes.com\/sites\/zakdoffman\/2025\/05\/07\/googles-unbeatable-pixel-update-leaves-other-androids-behind\/\" target=\"_self\" aria-label=\"immediate update for its Pixel phones\" rel=\"noopener\">immediate update for its Pixel phones<\/a>. Now Samsung has done the same, releasing details of its <a class=\"color-link\" href=\"https:\/\/security.samsungmobile.com\/securityUpdate.smsb\" target=\"_blank\" rel=\"nofollow noopener noreferrer\" data-ga-track=\"ExternalLink:https:\/\/security.samsungmobile.com\/securityUpdate.smsb\" aria-label=\"May security update\">May security update<\/a> with the fix included. There\u2019s a nasty twist with this one, though, with Samsung\u2019s phones particularly vulnerable to the attack.<\/p>\n<p><a class=\"color-link\" href=\"https:\/\/www.facebook.com\/security\/advisories\/cve-2025-27363\" target=\"_blank\" rel=\"nofollow noopener noreferrer\" data-ga-track=\"ExternalLink:https:\/\/www.facebook.com\/security\/advisories\/cve-2025-27363\" aria-label=\"Meta\">Meta<\/a> was first to disclose CVE-2025-27363, detailing an arbitrary code execution vulnerability in FreeType font rendering software that \u201cmay have been exploited in the wild.\u201d Now Google says Android phones have been attacked.<\/p>\n<p><a class=\"embed-base color-body color-body-border link-embed embed-1\" href=\"https:\/\/www.forbes.com\/sites\/zakdoffman\/2025\/05\/07\/samsungs-android-mistake-do-not-leave-your-galaxy-at-risk\/\" target=\"_blank\" aria-label=\"Samsung\u2019s Android Mistake\u2014Do Not Leave Your Galaxy At Risk\" rel=\"noopener noreferrer\" data-ga-track=\"forbesEmbedly:https:\/\/www.forbes.com\/sites\/zakdoffman\/2025\/05\/07\/samsungs-android-mistake-do-not-leave-your-galaxy-at-risk\/\">ForbesSamsung\u2019s Android Mistake\u2014Do Not Leave Your Galaxy At RiskBy Zak Doffman<\/a><\/p>\n<p>The twist is that Android\u2019s security bulletin says the fix only applies to Android 13 and 14, suggesting Android 15 has already been addressed. That means Samsungs are vulnerable where Pixels are not, given that the Galaxy-maker was late to the party with One UI 7\u2019s Android 15 rollout, and millions of phones have not yet been upgraded.<\/p>\n<p>Now America\u2019s cyber defense agency has issued an update warning for all affected devices, with a May 27 deadline to either update or stop using phones. The formal mandate applies just to U.S. federal employees, but <a class=\"color-link\" href=\"https:\/\/www.cisa.gov\/known-exploited-vulnerabilities-catalog\" target=\"_blank\" rel=\"nofollow noopener noreferrer\" data-ga-track=\"ExternalLink:https:\/\/www.cisa.gov\/known-exploited-vulnerabilities-catalog\" aria-label=\"CISA\u2019s\">CISA\u2019s<\/a> remit is \u201cto help every organization better manage vulnerabilities and keep pace with threat activity.\u201d<\/p>\n<p>The good news with this vulnerability and fix is that Samsung has been almost as fast as Google in confirming the fix. That\u2019s not always the case. We have seen multiple occasions where Samsungs have run a month behind Pixels with these updates, even with a CIAS mandate in place which Samsung devices have missed.<\/p>\n<p>Clearly, this only applies to those Galaxy phones yet to upgrade to Android 15, and that upgrade satisfies the update mandate per Android\u2019s security bulletin. If you\u2019re sticking with Android 14 for now \u2014 by choice or otherwise, then ensure you apply the update as soon as it\u2019s made available for your model, region and carrier. You should be able to meet the deadline, given it\u2019s late in the month.<\/p>\n<p> <a class=\"embed-base color-body color-body-border link-embed embed-2\" href=\"https:\/\/www.forbes.com\/sites\/zakdoffman\/2025\/05\/07\/googles-gmail-upgrade-you-must-decide-if-this-goes-too-far\/\" target=\"_blank\" aria-label=\"Google Starts Scanning All Your Emails After Gmail Upgrade\" rel=\"noopener noreferrer\" data-ga-track=\"forbesEmbedly:https:\/\/www.forbes.com\/sites\/zakdoffman\/2025\/05\/07\/googles-gmail-upgrade-you-must-decide-if-this-goes-too-far\/\">ForbesGoogle Starts Scanning All Your Emails After Gmail UpgradeBy Zak Doffman<\/a><\/p>\n<p>CISA warns that \u201cFreeType contains an out-of-bounds write vulnerability when attempting to parse font subglyph structures related to TrueType GX and variable font files that may allow for arbitrary code execution.\u201d<\/p>\n<p>Google explains this \u201ccould lead to local code execution with no additional execution privileges needed,\u201d and that \u201cuser interaction is not needed for exploitation.\u201d<\/p>\n<p>All of which means you need to take this seriously.<\/p>\n","protected":false},"excerpt":{"rendered":"Samsung\u2019s new update deadline confirmed. AFP via Getty Images Android is under attack \u2014 again. Google confirmed as&hellip;\n","protected":false},"author":2,"featured_media":83313,"comment_status":"","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3159],"tags":[35057,26516,547,4692,40208,40211,40212,40209,40210,4693,53,16,15],"class_list":{"0":"post-83312","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-mobile","8":"tag-android-attack","9":"tag-android-warning","10":"tag-mobile","11":"tag-pixel-warning","12":"tag-samsung-android-15","13":"tag-samsung-android-16","14":"tag-samsung-attack","15":"tag-samsung-one-ui-7","16":"tag-samsung-one-ui-8","17":"tag-samsung-warning","18":"tag-technology","19":"tag-uk","20":"tag-united-kingdom"},"share_on_mastodon":{"url":"https:\/\/pubeurope.com\/@uk\/114469589671681865","error":""},"_links":{"self":[{"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/posts\/83312","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/comments?post=83312"}],"version-history":[{"count":0,"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/posts\/83312\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/media\/83313"}],"wp:attachment":[{"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/media?parent=83312"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/categories?post=83312"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/tags?post=83312"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}