Google has issued a security update for Android in March, warning of two new vulnerabilities that have been exploited by attackers. The update addresses CVE-2024-43093 and CVE-2024-50302, which affect the underlying framework and kernel of Android, respectively.
While both fixes are available for Pixel devices within days, Samsung’s security release for March only includes the first fix. This is not the first time this fix has been released in a previous month; its inclusion again raises questions about the delay.
The newer CVE-2024-50302 has likely been used in recent attacks in Europe and may apply to Galaxy phones as well as Pixels. Given the risk of USB forensic attacks, it’s essential that all Android users update their devices as soon as possible.
Samsung’s delayed release of its Android 15 update has left many wondering why this fix is not available sooner. However, the company plans to release One UI 8.0, which will be based on Android 16, directly after skipping One UI 7.1 and 7.1.1.
The delays in Samsung’s updates have raised concerns about the need for an Android rethink. With the threat level increasing once these fixes are released to the public domain, it’s crucial that all phones receive these updates promptly. Apple’s approach of locking down iPhones with updates is a model that Google and other OEMs should consider adopting.
In light of this latest security update, users are urged to install their Android devices as soon as possible to ensure they have the necessary protection against these new vulnerabilities.
Source: https://www.forbes.com/sites/zakdoffman/2025/03/04/google-updates-unbeatable-pixel-samsung-must-catch-up-fast