Google Patches 62 Vulnerabilities in New Android Security Update
In a significant move to bolster the security of its Android operating system, Google has rolled out a new security update that addresses a total of 62 vulnerabilities. Among these, two high-severity zero-day flaws have been identified and patched, which were reportedly being actively exploited in the wild. This update underscores the ongoing battle against cyber threats and the importance of timely software updates for users.
The Zero-Day Vulnerabilities
The two critical vulnerabilities, tracked as CVE-2024-53150 and CVE-2024-53197, were discovered in the Linux kernel’s USB sub-component. These flaws pose serious risks, as they could potentially allow attackers to escalate privileges or access sensitive information without requiring any user interaction.
- CVE-2024-53197 is classified as a privilege escalation bug, which means it could enable an attacker to gain higher access rights within the system, potentially leading to unauthorized control over the device.
- CVE-2024-53150, on the other hand, is an out-of-bounds read vulnerability that may result in data exposure, allowing attackers to access sensitive information stored on the device.
Both vulnerabilities carry a Common Vulnerability Scoring System (CVSS) score of 7.8, indicating their high severity. They were initially addressed in the Linux kernel in December 2024, but their exploitation in targeted attacks prompted Google to expedite their patching in the Android ecosystem.
Exploitation in the Wild
Google has confirmed that these vulnerabilities may have been exploited in "limited, targeted" attacks. Adam Boynton, a senior security strategy manager at Jamf, explained the implications of these flaws, stating, “CVE-2024-53150 would allow an attacker to access sensitive information without user interaction, while CVE-2024-53197 could lead to memory corruption or even privilege escalation if exploited by attackers.”
Interestingly, CVE-2024-53197 has been linked to an exploit chain utilized by Cellebrite, an Israeli digital forensics firm. Reports from Amnesty International indicate that Cellebrite exploited this vulnerability, along with others, to gain unauthorized access to the phone of a Serbian activist in December 2024. This connection highlights the real-world implications of such vulnerabilities and the potential for misuse by malicious actors.
Additional Vulnerabilities Addressed
In addition to the two zero-day vulnerabilities, Google’s April 2025 security update includes fixes for 60 other vulnerabilities across various Android components. These vulnerabilities are categorized as follows:
- 28 issues addressed in the 2025-04-01 patch level, primarily affecting the System and Framework.
- 31 additional vulnerabilities in the 2025-04-05 patch level, targeting the Kernel, Qualcomm, MediaTek, and other third-party components.
It is worth noting that there are no new patches in this cycle for Automotive OS or Wear OS, indicating a focused effort on the core Android operating system and its immediate components.
Urgency for Users to Update
Given the active exploitation of these vulnerabilities, security experts are urging Android users to update their devices immediately. Boynton emphasized the importance of this action, stating, “With two vulnerabilities currently being exploited by cybercriminals, it’s absolutely essential that Android users update their devices immediately.” He further recommended that all users, regardless of their device model, should prioritize updating their Android OS to mitigate potential risks.
The updates will first be rolled out to Google’s Pixel devices, with other manufacturers such as Samsung, OnePlus, and Motorola expected to follow suit shortly. Google has indicated that the patches were distributed to partners in January, allowing for a swift rollout to end-users.
Conclusion
As cyber threats continue to evolve, the importance of maintaining up-to-date software cannot be overstated. The recent Android security update from Google serves as a crucial reminder for users to remain vigilant and proactive in protecting their devices. By addressing these vulnerabilities promptly, Google not only enhances the security of its operating system but also reinforces its commitment to user safety in an increasingly digital world.