Google’s first Pixel Drop of 2025 occurred this week with an extended record of upgrades for the corporate’s flagship telephones, tablets, and watches. Google adopted the replace carefully with the March 2025 Android Safety Bulletin, with fixes for 43 malicious bugs—together with two zero-day vulnerabilities which will actively be beneath “restricted, focused exploitation” on units operating Android OS.
The patches cowl issues starting from flaws that permit attackers to realize distant code execution on susceptible units to points with Qualcomm and MediaTek parts. The 2 zero-day (highest severity) exploits are labeled CVE-2024-43093 and CVE-2024-50302, each of that are “privilege escalation” flaws. In accordance with Bleeping Laptop, the previous lets attackers entry delicate knowledge by bypassing a file path filter with none further enter from the consumer. The latter is a matter within the Linux kernel that enables the unlocking of confiscated units (and has reportedly been utilized by Serbian legislation enforcement to focus on activists).
Zero-days are safety vulnerabilities which are publicly disclosed earlier than the developer has a chance to problem a patch. Even when the present exploitation is proscribed to those Serbian authorities, it is essential to guard your units earlier than further dangerous actors reap the benefits of these flaws as effectively.
How to make sure your Android machine is up to date
Normally, all it is advisable to do to repair safety flaws on Android is replace your machine whenever you obtain a notification to take action. Google points patches for its personal Pixel telephones and the Android Open Supply Challenge (AOSP) code, and likewise alerts different producers—like Samsung, Motorola, and OnePlus—when updates are on their means.
Gadgets operating Android 10 and later could get each safety updates and Google Play system updates. The present batch of patches applies to AOSP variations 12, 12L, 13, 14, and 15, and the latest is dated 2025-03-05.
In the event you’re unsure whether or not your Android machine has been up to date or imagine you’ll have missed the notification, head to your machine settings to find your Android model (About cellphone or About pill > Android model) and verify your replace standing (System > Software program replace or System replace). Observe the on-screen prompts to obtain and set up obtainable patches.