Security Advisory

Google Android Family January 2026 Routine Security Update Advisory

  • Jan 07 2026
Google Android Family January 2026 Routine Security Update Advisory

Overview

 

 

Google(https://www.google.com) has released a security update that fixes vulnerabilities in the Android family of products. Users of affected products are advised to update to the latest version.

 

 

Affected Products

 

 

Android MediaTek Components

Android Qualcomm Components

Android Qualcomm closed-source components

Android frameworks

Android Unisoc components

Android system

 

 

Resolved Vulnerabilities

 

 

Critical Denial of Service Vulnerability in the Android Framework (CVE-2025-48631) [2]

Highly critical local privilege escalation vulnerabilities in the Android framework (CVE-2025-22420, CVE-2025-32319, CVE-2025-32328, CVE-2025-32329, CVE-2025-48525, CVE-2025-48564, CVE-2025-48565, CVE-2025-48572, CVE-2025-48573, Cve-2025-48580, cve-2025-48583, cve-2025-48588, cve-2025-48589, cve-2025-48594, cve-2025-48596, cve-2025-48597, cve-2025-48601, cve-2025-48618, cve-2025-48620, cve-2025-48621, cve-2025-48627, cve-2025-48629, cve-2025-48632, cve-2025-48639) [2]

High Information Disclosure Vulnerabilities in the Android Framework (CVE-2025-48591, CVE-2025-48592, CVE-2025-48628, CVE-2025-48633) [2]

Highly-rated denial-of-service vulnerabilities in the Android framework (CVE-2025-48576, CVE-2025-48584, CVE-2025-48590, CVE-2025-48603, CVE-2025-48607, CVE-2025-48614) [2]

Highly-rated local privilege escalation vulnerabilities in Android systems (CVE-2023-40130, CVE-2023-40130, CVE-2025-22432, CVE-2025-48536, CVE-2025-48566, CVE-2025-48575, CVE-2025-48586, CVE-2025-48598, CVE-2025-48599, CVE-2025-48612, CVE-2025-48626) [2]

Highly rated information disclosure vulnerabilities in Android systems (CVE-2025-48555, CVE-2025-48604, CVE-2025-48622) [2]

Highly-rated vulnerabilities in Android Unisoc (Kernel, Bootloader) components (CVE-2025-47351, CVE-2025-47354, CVE-2025-47382) [2]

Highly-rated vulnerabilities in Android MediaTek (Modem) components (CVE-2025-31717, CVE-2025-31718, CVE-2025-3012, CVE-2025-11131, CVE-2025-11132, CVE-2025-11133, CVE-2025-61607, CVE-2025-61608, CVE-2025-61609, CVE-2025-61610, CVE-2025-61617, CVE-2025-61618, CVE-2025-61619) [2]

Highly rated vulnerabilities in Android Qualcomm (Closed-source component) components (CVE-2025-47319, CVE-2025-47372, CVE-2025-27053, CVE-2025-27054, CVE-2025-27070, CVE-2025-27074, CVE-2025-47323, CVE-2025-47370) [2]

 

 

Vulnerability Patches

 

 

Product-specific Vulnerability Patches were made available with the January 5, 2026 update. For more information on Vulnerability Patches, please refer to the Referenced Sites documentation. [3]

 

 

 

References

 

 

[1] Android Security Bulletins

https://source.android.com/docs/security/bulletin/asb-overview

[2] Android Security Bulletin-December 2025

https://source.android.com/docs/security/bulletin/2025-12-01.html

[3] Check & update your Android version

https://support.google.com/android/answer/7680439

Tags:
Previous Post

Next Post