Google security patch release for CVE-2025-48631
Security Patch Release
Summary
Hide ▲
Show ▼
Google released December 2025 security updates for Android, patching 107 flaws and addressing two Framework vulnerabilities that had reportedly been exploited in the wild. The bulletin also fixes CVE-2025-48631, a critical Framework issue that could cause remote denial-of-service. Google split the rollout into 2025-12-01 and 2025-12-05 patch levels, and users are urged to install the latest available update as soon as possible.
Related Happenings
AirDrop and Quick Share fixes from Apple and Google
Security Patch Release
H score27
First: 30.06.2026 12:27
Last: 30.06.2026 12:27
Sources 1
About this happening:
**Apple** and **Google** have started shipping fixes for the disclosed **AirDrop** and **Quick Share** flaws, reducing exposure for nearby attacks against widely used sharing feat...
AirDrop and Quick Share fixes from Apple and Google
Security Patch ReleaseAbout this happening: **Apple** and **Google** have started shipping fixes for the disclosed **AirDrop** and **Quick Share** flaws, reducing exposure for nearby attacks against widely used sharing feat...
Progress LoadMaster CVE-2026-8037 patch release
Security Patch Release
H score52
First: 30.06.2026 10:38
Last: 30.06.2026 10:38
Sources 1
About this happening:
**Progress** published fixed **LoadMaster** versions for **CVE-2026-8037**, closing a **pre-auth root command execution** path on appliances with the API enabled. Administrators r...
Progress LoadMaster CVE-2026-8037 patch release
Security Patch ReleaseAbout this happening: **Progress** published fixed **LoadMaster** versions for **CVE-2026-8037**, closing a **pre-auth root command execution** path on appliances with the API enabled. Administrators r...
Linux kernel maintainers security patch release for CVE-2026-43503
Security Patch Release
H score34
First: 26.06.2026 14:51
Last: 26.06.2026 14:51
Sources 1
About this happening:
**Linux kernel** merged and shipped the **DirtyClone** security fix for **CVE-2026-43503**, closing a **CVSS 8.8** local privilege-escalation path that could let affected systems...
Linux kernel maintainers security patch release for CVE-2026-43503
Security Patch ReleaseAbout this happening: **Linux kernel** merged and shipped the **DirtyClone** security fix for **CVE-2026-43503**, closing a **CVSS 8.8** local privilege-escalation path that could let affected systems...
Squid web proxy patch for CVE-2026-47729
Security Patch Release
H score20
First: 22.06.2026 17:29
Last: 22.06.2026 17:29
Sources 1
About this happening:
**Squid maintainers** merged a **null-terminator check** for **CVE-2026-47729** into the **development branch** and **v7**, closing the FTP-parser over-read that could expose shar...
Squid web proxy patch for CVE-2026-47729
Security Patch ReleaseAbout this happening: **Squid maintainers** merged a **null-terminator check** for **CVE-2026-47729** into the **development branch** and **v7**, closing the FTP-parser over-read that could expose shar...
Google Android Developer Verifier enforcement rollout for verified app installs
Security Tool/Service
H score14
First: 22.06.2026 15:45
Last: 22.06.2026 15:45
Sources 1
About this happening:
Google is **enforcing Android developer verification** on **September 30, 2026**, blocking normal installs of unverified apps on certified Android phones in **Brazil, Indonesia, S...
Google Android Developer Verifier enforcement rollout for verified app installs
Security Tool/ServiceAbout this happening: Google is **enforcing Android developer verification** on **September 30, 2026**, blocking normal installs of unverified apps on certified Android phones in **Brazil, Indonesia, S...
Timeline
-
02.12.2025 09:17 2 articles · 7mo ago
Android December 2025 security update release
Mitigation Patch UpdateGoogle released December 2025 Android security updates for the Android operating system, fixing 107 flaws across Framework, System, Kernel, and vendor components from Arm, Imagination Technologies, MediaTek, Qualcomm, and Unison. The bulletin includes CVE-2025-48633, CVE-2025-48572, and CVE-2025-48631, and it provides patch levels 2025-12-01 and 2025-12-05 for device manufacturers and users.
Show sources
- Google Patches 107 Android Flaws, Including Two Framework Bugs Exploited in the Wild — thehackernews.com — 02.12.2025 09:17
- Google Patches 107 Android Flaws, Including Two Framework Bugs Exploited in the Wild — thehackernews.com — 02.12.2025 09:17
-
02.12.2025 09:17 1 articles · 7mo ago
Framework exploitation assessment for Android vulnerabilities
Technical Analysis UpdateGoogle said the Framework vulnerabilities CVE-2025-48633 and CVE-2025-48572 had been exploited in the wild and may be under limited, targeted exploitation, but it did not release additional details about the attack methods, whether the flaws were chained, or the scale of the activity. The December 2025 bulletin therefore combines patch release details with a restrained exploitation assessment for the affected Android Framework issues.
Show sources
- Google Patches 107 Android Flaws, Including Two Framework Bugs Exploited in the Wild — thehackernews.com — 02.12.2025 09:17