Google has initiated a security update for Android devices addressing approximately 50 vulnerabilities, including a critical flaw exploited in the wild. This update coincides with the release of the 2025-05-01 security patch level and includes significant fixes for high-severity issues in various components. Affected: Android operating system
Keypoints :
- Google’s latest security update for Android addresses around 50 vulnerabilities.
- The update includes a fix for CVE-2025-27363, a critical out-of-bounds write flaw in the FreeType library, rated with a CVSS score of 8.1.
- The 2025-05-01 patch resolves 24 high-severity vulnerabilities within the Framework and System components.
- A follow-up update on the 2025-05-05 patch level fixes an additional 22 vulnerabilities in various hardware components.
- The update for Automotive OS includes fixes from the May 2025 security bulletin, but lacks platform-specific patches.
- Wear OS update addresses four vulnerabilities that could potentially allow elevation of privilege or cause denial of service.
Read More: https://www.securityweek.com/android-update-patches-freetype-vulnerability-exploited-as-zero-day/