Software update reportedly fixes Samsung's Exynos security hole

Update being rolled out to owners in the U.K. addresses vulnerability in select Samsung devices that allowed access to user data.

Samsung's Galaxy Note 2.
Samsung's Galaxy Note 2. Josh Miller/CNET

Samsung has issued a software update to address a nasty vulnerability found in a handful of smartphones that allowed attackers access to user data and left the handset vulnerable to malicious apps and bricking.

The vulnerability, which was discovered last month, lies in Exynos 4, the ARM-based system-on-a-chip typically found in Samsung smartphones and tablets. An exploit bypasses the system permissions, allowing any app to extract data from the device's RAM or inject malicious code into the kernel of a Galaxy S3. But other devices using the Exynos 4 were also found to be vulnerable, including select Galaxy S2 models, the Galaxy Note, the Galaxy Note 2, and the Galaxy Tab 2 tablet.

Samsung issued a software update for the S3 yesterday in the U.K. that fixes the problem, according to a SamMobile report. The update is also said to fix a "sudden death" issue that caused some devices to seize up, though that was unconfirmed.

There was no word on when U.S. users could expect the update. CNET has contacted Samsung for more information and will update this report when we learn more.

Featured Video

Why do so many of us still buy cars with off-road abilities?

Cities are full of cars like the Subaru XV that can drive off-road but will never see any challenging terrain. What drives us to buy cars with these abilities when we don't really need them most of the time?

by Drew Stearne