Samsung has issued its September 2025 security update to address a critical zero-day vulnerability currently being exploited. The update includes fixes for 25 Samsung Vulnerabilities and Exposures (SVEs), alongside enhancements from Google and Samsung Semiconductor, to protect Galaxy devices against various security threats. Users are urged to install the update promptly to prevent potential remote code execution attacks.
The most critical issue resolved is CVE-2025-21043, an out-of-bounds write vulnerability in the libimagecodec.quram.so library, affecting Android versions 13 through 16. This flaw could allow remote attackers to execute arbitrary code by tricking users into processing a specially crafted image. An existing exploit for this vulnerability has been confirmed, highlighting the urgency of the update.
The vulnerability was disclosed by security teams at Meta and WhatsApp, and the patch corrects the flawed implementation. The update also addresses two other high-severity vulnerabilities: CVE-2025-32100, which lacks specific details but is rated high severity, and CVE-2025-21034, another out-of-bounds write vulnerability in the libsavsvc.so library, which could allow local attackers to execute arbitrary code if a malicious app is present.
Additionally, the update fixes several moderate-severity vulnerabilities, such as improper access control in One UI Home and a flaw in ContactProvider that could expose sensitive information. Other patches resolve issues in ImsService that may cause call interruptions or SIM disabling. The SMR Sep-2025 Release 1 update will be gradually rolled out to supported Galaxy devices. Users can check for the update via Settings > Software update > Download and install.
