PSA: Your Samsung Galaxy Phone has a security update you should install right now

In our modern digital landscape, software issues someimes pop up that require urgent fixes. One such fix is ​​currently rolling out for Samsung Galaxy Phones as We Speak, and if you haven’t checked your phone for updates today, you may be want to. The Bug It Fixes is a Doozy.

The issue has a very technical name called cve-2025-21043. Per Samsung’s update pageThe Bug Allowed Attackers to Conduct an “out-of-bounds write in libimagecodec.Quram.so” That “Allows remote attackers to Execute Arbitrary Code.”

According to Google Project ZeroLibimagecodec.Quram.so is a Closed-Source tool that Third-Parthy Messaging Apps Use to Parse Images that Attackers should use to Hijack a Person’s SmartPhone. The Patch Going Out to Samsung Devices Now Fixes an “Incorrect Implementation” of the tool, Preventing that from Happening.

The exploit, which was Discovered in August by Whatsapp’s Security Team, Was Reported to Samsung and Apple Behind Closed Doors So as Not to Spread the News. There Aren Bollywood Any Public Examples of Hackers Using This Vulnerability, But Samsung’s Report notes that the korean tech giant was “made aware of an expert in the wild.” Thus, while any individual whatsapp user was unlikely to be targeted, the tools to do so existed.

Whatsapp has over three billion users worldwide, soch an exploit could have done some damage, especially if it was made to target multiple users at Once. As Pcmag notesSamsung Didn’T mention any other third-party messaging services in its report, so it’s unchary if only Whatsapp was affected or if other services Cold’vee experience with the vulnerability.

Apple was first to the punch to fix the exploit, Which it did Back in late August. It wasn’t the exact police is the samsung was facing, but it has a similar end effect in that it could cause phones to be hijacked.

Samsung’s Update Comes Approximately two weeks after google released a Duo of Similar Security Flaws That also Had exploits observed in the wild as part of Android’s monthly security update for September 2025.