Google’s first Pixel Drop of 2025 occurred this week with a protracted listing of upgrades for the corporate’s flagship telephones, tablets, and watches. Google adopted the replace intently with the March 2025 Android Safety Bulletin, with fixes for 43 malicious bugs—together with two zero-day vulnerabilities which will actively be below “restricted, focused exploitation” on gadgets working Android OS.
The patches cowl issues starting from flaws that permit attackers to realize distant code execution on susceptible gadgets to points with Qualcomm and MediaTek elements. The 2 zero-day (highest severity) exploits are labeled CVE-2024-43093 and CVE-2024-50302, each of that are “privilege escalation” flaws. In accordance with Bleeping Laptop, the previous lets attackers entry delicate information by bypassing a file path filter with none extra enter from the consumer. The latter is a matter within the Linux kernel that permits the unlocking of confiscated gadgets (and has reportedly been utilized by Serbian legislation enforcement to focus on activists).
Zero-days are safety vulnerabilities which might be publicly disclosed earlier than the developer has a possibility to problem a patch. Even when the present exploitation is restricted to those Serbian authorities, it is necessary to guard your gadgets earlier than extra dangerous actors make the most of these flaws as nicely.
How to make sure your Android machine is up to date
Usually, all it is advisable do to repair safety flaws on Android is replace your machine if you obtain a notification to take action. Google points patches for its personal Pixel telephones and the Android Open Supply Mission (AOSP) code, and likewise alerts different producers—like Samsung, Motorola, and OnePlus—when updates are on their manner.
Gadgets working Android 10 and later could get each safety updates and Google Play system updates. The present batch of patches applies to AOSP variations 12, 12L, 13, 14, and 15, and the latest is dated 2025-03-05.
Should you’re unsure whether or not your Android machine has been up to date or imagine you will have missed the notification, head to your machine settings to find your Android model (About telephone or About pill > Android model) and test your replace standing (System > Software program replace or System replace). Observe the on-screen prompts to obtain and set up out there patches.
