This patch fixes more than 70 vulnerabilities.
Samsung has released the January security patch for Galaxy devices. This patch fixes more than 70 vulnerabilities. This update includes firmware versions S91xBXXS3BWL3 for Galaxy S23 series devices, S90xBXXS7DWL3 for Galaxy S22 models and G99xBXXS9FWL9 for Galaxy S21 devices. The size of the updates is approximately 400MB.
The security patch includes
Samsung’s security update page states that the most important vulnerability fixed by the update is CVE-2022-40507, which is labeled as “Critical”. Fixes have also been released for 67 vulnerabilities listed as high priority and six medium priority vulnerabilities. A vulnerability in the previous security update has also been fixed with this update.
Some of the issues fixed with the update
This update fixes an issue with the “Notification service” on Galaxy phones. This issue could have allowed attackers to access users’ personal information. Galaxy devices running Android 11 to Android 14 were affected by this issue. We also fixed a bug that could allow an attacker to pair a targeted Galaxy phone via Bluetooth without any action from the device user.
An issue that allowed Samsung DeX users to access other users’ notifications in a multi-user environment has also been fixed with this update. It is unclear whether the January security update brings back the previously removed screen burn-in protection feature on affected phones.
Scope of the update
Other devices that will receive the Samsung Mobile Security Update for January include the Galaxy Z Flip 5, Galaxy Z Fold 5, Galaxy Z Flip 4, Galaxy Z Fold 4, Galaxy A52 (5G) and Galaxy Note 20. If the update is not installed automatically, users can manually update from Settings > Software update. These updates include fixes for Android-specific vulnerabilities and vulnerabilities specific to Samsung Galaxy devices.
Source: https://www.cioupdate.com.tr/teknoloji/guvenlik/samsung-galaxy-guncelleme/
