Samsung has now revealed the details of the April 2020 security patch. Along with Google security patches, Samsung provides 34 Samsung Vulnerabilities and Exposures (SVE) items, in order to improve customer’s confidence in the security of Samsung Mobile devices.
One UI 3.0: list of eligible Samsung devices that will get the Android 11
In the April 2020 security patch, the company fixed 14 critical vulnerabilities in the Android OS, along with several high and moderate-risk vulnerabilities.
Join our Samsung Channel on Telegram:
Issues fixed in the April 2020 security patch:
- Multiples vulnerabilities in Fingerprint trustlet including a possible arbitrary memory overwrite, buffer non-initialize and leakage of address information allow arbitrary code execution. The patch adds proper input validation and buffer initialize, and corrects implementation of kernel logging.
- Certain floating icons allow unauthorized access to applications in Secure Folder. The patch adds proper check for applications with floating icon.
- A vulnerability allows access to clipboard contents on a locked device via Google Assistant. The patch removes options for showing editing text from the keyboard while the device is locked.
- A lack of check for param type in MLDAP trustlet with TEEGRIS allows arbitrary code execution. The patch adds proper check of param type.
- An invalid input check vulnerability in MLDAP trustlet with TEEGRIS allows out of bounds read. The patch adds proper boundary check code to prevent out of bounds read.
- A vulnerability in NFC allows exposure of potential sensitive information from dumpstate. The patch addresses the log of transaction from NFC.
- A vulnerability in recent task leaks preview of applications in Secure Folder while in locked state. The patch addressed the issue in Secure Folder.
- A lack of status check logic for Lockdown mode in Edge Lighting application allows notification exposure. The patch adds code to check the Lockdown status in Edge Lighting application.
- The Kr00k vulnerability may allow an attacker to decrypt some WPA2-Personal/Enterprise traffic by forcing an AP/client to start utilizing an all-zero encryption key. The patch addressed the issue.
Samsung One UI 2.0 March 2020 Update List: Here’s all the One UI 2.0 software update
List of Samsung devices that will get monthly security patch: April 2020 device list
- Galaxy Fold
- Galaxy Z Flip
- Galaxy S8
- Galaxy S8+
- Galaxy S8 Active
- Galaxy S9
- Galaxy S9+
- Galaxy S10
- Galaxy S10+
- Galaxy S10e
- Galaxy S10 5G
- Galaxy S10 Lite
- Galaxy S20
- Galaxy S20 5G
- Galaxy S20+
- Galaxy S20+ 5G
- Galaxy S20 Ultra, Galaxy S20 Ultra 5G
- Galaxy Note 8
- Galaxy Note 9
- Galaxy Note 10
- Galaxy Note 10 5G
- Galaxy Note 10+
- Galaxy Note 10+ 5G
- Galaxy Note 10 Lite
Enterprise Models:
- Galaxy A8 (2018)
- Galaxy A50
- Galaxy XCover4s
- Galaxy XCover FieldPro
- Galaxy XCover Pro
List of Samsung devices that will get quarterly security patch: April 2020 device list
- Galaxy S7 Active
- Galaxy S8 Lite
- Galaxy A2 Core
- Galaxy A5 (2017)
- Galaxy A6
- Galaxy A6+
- Galaxy A7 (2018)
- Galaxy A8 Star
- Galaxy A8s
- Galaxy A9 (2018)
- Galaxy A10
- Galaxy A10e
- Galaxy A10s
- Galaxy A20
- Galaxy A20e
- Galaxy A20s
- Galaxy A30
- Galaxy A30s
- Galaxy A40
- Galaxy A50s
- Galaxy A51
- Galaxy A60
- Galaxy A70
- Galaxy A70s
- Galaxy A71
- Galaxy A80
- Galaxy A90 5G
- Galaxy A01
- Galaxy J2 Core
- Galaxy J3 Top
- Galaxy J4
- Galaxy J4+
- Galaxy J4 Core
- Galaxy J6
- Galaxy J6+
- Galaxy J7 Duo
- Galaxy J7 Top
- Galaxy J7 Prime2
- Galaxy J8
- Galaxy M10
- Galaxy M10s
- Galaxy M20
- Galaxy M21
- Galaxy M30
- Galaxy M31
- Galaxy M30s
- Galaxy M40
- Galaxy Tab A 10.5 (2018)
- Galaxy Tab A 10.1 (2019)
- Galaxy Tab A 8 (2019)
- Galaxy Tab A 8 Plus (2019)
- Galaxy Tab A 8.4 (2020)
- Galaxy Tab Active2
- Galaxy Tab Active Pro
- Galaxy Tab S4
- Galaxy Tab S5e
- Galaxy Tab S6
- Galaxy Tab S6 5G
- Galaxy View2
- W20 5G
Other regular security updates:
- Galaxy A3 (2017)
- Galaxy A7 (2017)
- Galaxy A8+ (2018)
- Galaxy Note FE
- Galaxy J3 (2017)
- Galaxy J3 Pop
- Galaxy J5 (2017)
- Galaxy J5 Prime
- Galaxy J7 (2016)
- Galaxy J7 (2017)
- Galaxy J7 Prime
- Galaxy J7 Pop
- Galaxy J7 Max
- Galaxy J7 Neo
- Galaxy J7+
- Galaxy Tab A 10.1 (2016)
- Galaxy Tab A (2017)
- Galaxy Tab S3
- Galaxy Tab E 8 Refresh