From immediately, users with compatible devices can download the Android security bulletin of May 2025. It includes a correction for a font rendering defect which allowed the execution of a malicious code without user interaction.
Google has published the May security update for Android, addressing a total of 46 vulnerabilities in the smartphone operating system. The attackers may have already actively exploited a particularly serious security flaw. Users must update their devices to the latest version.
Critical Android safety faculty operated by pirates
THE May 2025 Security Bulletin deals with several vulnerabilities in the Android system and framework, as well as Google Play updates. The most dangerous of these is identified as CVE-2025-27363 and affects the library of the Open Source program Freetype. An error in text rendering can allow the execution of local malicious code without additional execution rights and without user interaction.
Google warns: “There are indications that the CVE-2025-27363 can be used in a limited and targeted manner.” However, specific details on attack methods or affected targets are not known. Vulnerability has a CVSS basic score of 8.1, which makes it very dangerous.
Font processing error
The Android safety flaw alert came in March 2025 from Facebook, which also provided active online operating evidence. This is an out -of -limited writing error that occurs when processing the Truetype GX and variable police files, allowing the injection of malicious code. Vulnerability only affects older freetype versions before 2.13.1.
Users must install the current security fix
To respond to vulnerabilities, the installation of the Android safety patch of May 2025 is required. It has been available since May 5 for compatible smartphones models. The installation requires at least Android 13. The old versions of the operating system no longer receive Google safety updates.
The post Google closes Android safety vulnerability operated by pirates appeared first on Techbook.
