Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Samsung security patch release for CVE-2025-21043

Security Patch Release
First reported
Last updated
Happening score
H score 54
1 unique sources, 1 articles

Summary

Hide ▲

Samsung released SMR Sep-2025 Release 1 to fix CVE-2025-21043, a critical remote code execution flaw in libimagecodec.quram.so on Android 13+ devices. Samsung said the bug is an out-of-bounds write and that an exploit had existed in the wild. The patch matters because unupdated devices could be remotely compromised through malicious image content.

Cases

Samsung image library flaw used to deliver LANDFALL spyware (5)

Related Happenings

Linux kernel security update for Copy Fail (CVE-2026-31431)

Security Patch Release
First: 30.04.2026 16:54 Last: 30.04.2026 16:54 Sources 1

About this happening: **Linux kernel** maintainers have fixed **CVE-2026-31431** and are rolling out updates to close a **local privilege escalation** flaw that lets an unprivileged attacker gain **roo...

Open Happening

Apple out-of-band iOS/iPadOS security updates (CVE-2026-28950)

Security Patch Release
First: 22.04.2026 23:58 Last: 22.04.2026 23:58 Sources 1

About this happening: **Apple** released **out-of-band security updates** for **iPhone and iPad** on **April 22, 2026** to fix **CVE-2026-28950**. The patch addresses a **Notification Services** flaw t...

Latest development: 23.04.2026 11:50

Apple issued **iOS 26.4.2**, **iPadOS 26.4.2**, **iOS 18.7.8**, and **iPadOS 18.7.8** on **2026-04-23** to close **CVE-2026-28950**, which could preserve deleted-message notifications on affected devices.

Open Happening

TP-Link security patch release for CVE-2025-15517

Security Patch Release
First: 25.03.2026 13:11 Last: 25.03.2026 13:11 Sources 1

About this happening: **TP-Link** released **security updates** for its **Archer NX** router series to close a critical authentication-bypass flaw that could let attackers upload firmware without loggi...

Open Happening

Samsung Windows 11 C: drive access-denied disruption after February 2026 updates

Service Disruption
First: 14.03.2026 00:11 Last: 14.03.2026 00:11 Sources 1

About this happening: Microsoft is investigating a **Windows 11 service disruption** affecting some **Samsung laptops** after the **February 2026 security updates**, with users seeing **C:\ is not acce...

Open Happening

Apple security patch release for CVE-2023-43010

Security Patch Release
First: 12.03.2026 11:58 Last: 12.03.2026 11:58 Sources 1

About this happening: **Apple** backported **Coruna-linked WebKit fixes** to **older iOS and iPadOS devices**, reducing exposure on legacy hardware that cannot move to the latest release. The update ex...

Open Happening

Timeline

  1. 12.09.2025 12:48 1 articles · 8mo ago

    Meta and WhatsApp report CVE-2025-21043 in Samsung Android devices

    Initial Disclosure

    Meta and WhatsApp security teams reported CVE-2025-21043 to Samsung on August 13 after identifying a critical remote code execution flaw in libimagecodec.quram.so on Samsung devices running Android 13 or later. The issue is an out-of-bounds write in a closed-source image parsing library developed by Quramsoft and could let remote attackers execute arbitrary code on affected Samsung Android devices.

    Show sources
    Open in new tab
  2. 12.09.2025 12:48 2 articles · 8mo ago

    Samsung patches CVE-2025-21043 in SMR Sep-2025 Release 1

    Mitigation Patch Update

    Samsung updated its advisory and released SMR Sep-2025 Release 1 for CVE-2025-21043, fixing the out-of-bounds write in libimagecodec.quram.so on Samsung devices running Android 13 or later. Samsung said the vulnerability allowed remote attackers to execute arbitrary code and that an exploit for the issue had existed in the wild, confirming active zero-day abuse against vulnerable Samsung Android devices.

    Show sources
    Open in new tab