News
Samsung March 2023 update brings important patch to Galaxy S21 Exynos models
Samsung recently released its March 2023 security update details, which mention fixes for a lot of CVE and SVE items. In the meantime, the company also reveals an important vulnerability fix for Samsung Galaxy S21 Exynos models with the March 2023 patch.
The SVE that reads “SVE-2022-0604(CVE-2023-21459)” fixes the use after free vulnerability in the decon driver. This issue was allowing attackers to cause memory access faults, meanwhile, the March 2023 patch adds proper check logic to prevent use after free.
The security patch details further say that this moderate level of SVE was reported on February 1, 2023. It was affecting the Galaxy devices driving Android 11, Android 12, and Android 13 operating systems with the Exynos 2100 chipset.
The Samsung Galaxy S21 series phones, including the S21, S21+, S21 Ultra, and S21 FE, use Exynos 2100 chipset in select regions, which means the March 2023 patch has fixed this major vulnerability for all these devices.
‘Improper authorization in Exynos baseband’ is also resolved:
Aside from the decon driver exposure, Samsung has also fixed the improper authorization in the Exynos baseband vulnerability – SVE-2022-2678(CVE-2023-21455).
As per the information, this issue was affecting Samsung Exynos models. It was allowing incorrect handling of the unencrypted message as was reported in November last year.
It is worth noting that Samsung is yet to release the March 2023 Android security patch update for Galaxy S21, S21+, S21 Ultra, or S21 FE customers. In fact, it hasn’t started delivering the March patch update yet.
Usually, the Korean company does not delay the release of security patches, but since it is currently rolling out the One UI 5.1 update, we are seeing a delay. However, the release is not far away, Galaxy customers are likely to get the March 2023 security patch very soon.