Google this week rolled out fixes for a complete of 111 distinctive CVEs as a part of the September 2025 set of Android patches, together with exploited zero-days.
The exploited vulnerabilities, each privilege escalation points, affect the Android Runtime (CVE-2025-48543) and Linux kernel (CVE-2025-38352).
“There are indications that the next could also be below restricted, focused exploitation: CVE-2025-38352, CVE-2025-48543,” Google’s advisory reads.
Fixes for the Linux kernel bug, a race situation associated to the dealing with of POSIX CPU timers, have been introduced in July, and all main distributions seem to have been patched.
Whereas there aren’t any studies of the vulnerability’s exploitation previous to Google’s recent warning, it was reported by Benoît Sevens of Google’s Menace Evaluation Group (TAG), which means that it might need been exploited in spy ware assaults.
Google’s advisory gives no particulars on the Android Runtime safety defect, apart from its affect on the Android Open Supply Challenge (AOSP) 13, 14, 15, and 16 releases.
The Android Runtime zero-day has been resolved as a part of the 2025-09-01 safety patch degree, which addresses 58 different bugs in Framework, System, and Widevine DRM.
Essentially the most extreme of those, Google warns, is a critical-severity distant code execution defect within the System part (CVE-2025-48539) that may be exploited with out further privileges required.Commercial. Scroll to proceed studying.
Units up to date to the 2025-09-05 safety patch degree will even obtain fixes for the Linux kernel bug, in addition to for 51 different points affecting the Linux kernel and Arm, Creativeness Applied sciences, MediaTek, and Qualcomm elements.
This month, Google rolled out a recent spherical of Pixel safety updates that resolve 23 vulnerabilities particular to those units, in addition to all of the bugs recognized in Android’s September 2025 safety bulletin.
All of the vulnerabilities described within the Android bulletin have been resolved with Put on OS, Pixel Watch, and Automotive OS updates as nicely. The Put on OS and Pixel Watch updates include fixes for 2 and one further safety defects, respectively.
Customers are suggested to replace their units to a safety patch degree of 2025-09-05 as quickly because it turns into accessible for them.
Associated: In Different Information: Iranian Ships Hacked, Verified Android Builders, AI Utilized in Assaults
Associated: Anatsa Android Banking Trojan Now Concentrating on 830 Monetary Apps
Associated: Android’s August 2025 Replace Patches Exploited Qualcomm Vulnerability
Associated: Iranian APT Targets Android Customers With New Variants of DCHSpy Spyware and adware
