Samsung Mobile is releasing a maintenance release for major flagship models as part of monthly Security Maintenance Release (SMR) process. This SMR package includes patches from Google and Samsung.
Google Patches for the following CVEs from Android Security Bulletin are applied in this Security Maintenance Release - July 2026 Package.
Critical
CVE-2026-27280, CVE-2026-28590, CVE-2026-28618, CVE-2026-28639, CVE-2026-33636
High
CVE-2025-48564, CVE-2025-48565, CVE-2025-48566, CVE-2026-0001, CVE-2026-0010, CVE-2026-0065, CVE-2026-0084, CVE-2026-21383, CVE-2026-24081, CVE-2026-24087, CVE-2026-28582, CVE-2026-28583, CVE-2026-28584, CVE-2026-28585, CVE-2026-28594, CVE-2026-28596, CVE-2026-28599, CVE-2026-28600, CVE-2026-28602, CVE-2026-28603, CVE-2026-28606, CVE-2026-28612, CVE-2026-28614, CVE-2026-28623, CVE-2026-28624, CVE-2026-28630, CVE-2026-28631, CVE-2026-28632, CVE-2026-28633, CVE-2026-28634, CVE-2026-28638, CVE-2026-28642, CVE-2026-28643, CVE-2026-28644, CVE-2026-28649, CVE-2026-28650
Moderate
None
Already included in previous updates
CVE-2026-0008, CVE-2026-20461, CVE-2026-24090
Not applicable to Samsung devices
CVE-2026-20457, CVE-2026-20458, CVE-2026-20459, CVE-2026-20460, CVE-2026-21734, CVE-2026-24091, CVE-2026-25259, CVE-2026-25260
※ Please see Android Security Bulletin for detailed information on Google patches.
Along with Google patches, Samsung Mobile provides 16 Samsung Vulnerabilities and Exposures (SVE) items described below, in order to improve our customer’s confidence on security of Samsung Mobile devices. Samsung security index (SSI), found in “Security software version”, SMR Jul-2026 Release 1 includes all patches from Samsung and Google. Some of the SVE items may not be included in this package, in case these items were already included in a previous maintenance release.
High
SVE-2026-0716(CVE-2026-21042)
Affected versions: Android 14, 15, 16
Disclosure status: Privately disclosed
Out-of-bounds write in libsavsac.so prior to SMR Jul-2026 Release 1 allows local attackers to execute arbitrary code.
The patch adds proper input validation.
SVE-2026-1029(CVE-2026-21044)
Affected versions: Android 14, 15, 16
Disclosure status: Privately disclosed
Improper authorization in KnoxGuardManager prior to SMR Jul-2026 Release 1 allows local attackers to bypass the persistence configuration of the application.
The patch adds proper authorization.
SVE-2026-1087(CVE-2026-21045)
Affected versions: Android 14, 15, 16
Disclosure status: Privately disclosed
Out-of-bounds write in parsing TIFF format in libimagecodec.media.quram.so prior to SMR Jul-2026 Release 1 allows remote attackers to write out-of-bounds memory.
The patch adds proper input validation.
SVE-2026-1141(CVE-2026-21046)
Affected versions: Android 14, 15, 16
Disclosure status: Privately disclosed
Time-of-check time-of-use race condition in fabricKeymaster trustlet prior to SMR Jul-2026 Release 1 allows local privileged attackers to execute arbitrary code.
The patch adds proper validation logic.
SVE-2026-1650(CVE-2026-21048)
Affected versions: Android 14, 15, 16
Disclosure status: Privately disclosed
Out-of-bounds write in parsing DNG format in libimagecodec.media.quram.so prior to SMR Jul-2026 Release 1 allows remote attackers to write out-of-bounds memory.
The patch adds proper input validation.
SVE-2026-1820(CVE-2026-21049)
Affected versions: Android 14, 15, 16
Disclosure status: Privately disclosed
Out-of-bounds write in libpadm.so library prior to SMR Jul-2026 Release 1 allows local attackers to execute arbitrary code.
The patch fixes incorrect implementation.
Moderate
SVE-2025-2635(CVE-2026-21039)
Affected versions: Android 15, 16
Disclosure status: Privately disclosed
Improper access control in Settings prior to SMR Jul-2026 Release 1 allows local attackers to configure Theft protection settings.
The patch adds proper access control.
SVE-2026-0002(CVE-2026-21040)
Affected versions: Android 14, 15, 16
Disclosure status: Privately disclosed
Improper access control in IAFDService prior to SMR Jul-2026 Release 1 allows local privileged attackers to use the privileged APIs.
The patch adds proper access control.
SVE-2026-0050(CVE-2026-21050)
Affected versions: Android 16
Disclosure status: Privately disclosed
Improper access control in SmartThingsKit prior to SMR Jul-2026 Release 1 allows local attackers to access sensitive information.
The patch adds proper caller check logic.
SVE-2026-0255(CVE-2026-21041)
Affected versions: Android 15, 16
Disclosure status: Privately disclosed
Improper access control in SamsungSEAgentService prior to SMR Jul-2026 Release 1 allows local attackers to access sensitive information.
The patch adds proper access control.
SVE-2026-0379(CVE-2026-21051)
Affected versions: Android 14, 15, 16
Disclosure status: Privately disclosed
Incorrect default permissions in WLAN security prior to SMR Jul-2026 Release 1 allows local attackers to configure TencentWifiSecurity settings.
The patch adds proper access control.
SVE-2026-1009(CVE-2026-21043)
Affected versions: Android 14, 15, 16
Disclosure status: Privately disclosed
Path traversal in Wallpaper service prior to SMR Jul-2026 Release 1 allows local privileged attackers to access files with system server privilege.
The patch adds proper input validation.
SVE-2026-1767(CVE-2026-21052)
Affected versions: Android 14, 15, 16
Disclosure status: Privately disclosed
Path traversal in SemClipboardService prior to SMR Jul-2026 Release 1 allows local privileged attackers to access files with system privilege.
The patch adds proper input validation.
Some SVE items included in the Samsung Android Security Update cannot be disclosed at this time.
Acknowledgements
Chen Jiang of vivo kM1rr0rs secLab: SVE-2026-1029
Dvir Gozlan working with TrendAI Zero Day Initiative: SVE-2026-1087
Xu Yiwen: SVE-2026-1141
Hyunwoo Kim (@v4bel): SVE-2026-1650, SVE-2026-1820
Stealth Assassin: SVE-2025-2635
fxffffff: SVE-2026-0002
X0ev: SVE-2026-0050
Eunkyu Lee @ KAIST Hacking Lab.: SVE-2026-1767
Version
| Version | Date | Notes |
|---|
| 1.0 | Jul 7, 2026 | Bulletin published |