Join on WhatsApp
Join on Telegram
Rabat – Google has released its March 2026 Android security update, fixing a large number of vulnerabilities that could affect phones running the operating system.
According to the Android Security Bulletin published by Google, the update addresses 129 security flaws discovered in different parts of the Android platform. These include issues in the system framework, media components, the operating system kernel, and several hardware drivers used by smartphone manufacturers.
Some of the vulnerabilities were classified as critical because they could allow remote code execution. Attackers could potentially run malicious code on a device if the flaw is successfully exploited. Such vulnerabilities are considered among the most serious because they can give attackers significant control over a device.
Google said one of the vulnerabilities fixed in the update had already been observed in targeted attacks before the patch was released. The flaw, identified as CVE-2026-21385, affects graphics components used in devices powered by Qualcomm chipsets. Qualcomm processors are used in a wide range of Android smartphones.
The security bulletin lists several other types of vulnerabilities that were patched in the update. Some could allow attackers to gain higher system privileges than they should normally have, while others could lead to information disclosure or system instability if exploited.
Read also: Iranian Hackers Intensify Criminal Ransomware Tactics Amid Regional War, Halcyon Finds
Android security updates are released every month and are first published by Google. Smartphone manufacturers then distribute them to their devices through system updates. The timing of these updates can vary depending on the brand and the model of the phone.
The March bulletin includes two security patch levels. The first focuses on vulnerabilities within Android’s core system components. The second level includes additional fixes related to hardware components and vendor-specific drivers.
Google said devices that install the latest patch level receive all the fixes included in the update.
The vulnerabilities addressed in the bulletin were reported by a combination of Google’s internal security teams and external researchers. Many of the discoveries were shared through responsible disclosure programs that allow researchers to report security issues before they become widely known.
Users can check whether the update is available for their device through their phone’s system update settings. Security experts generally recommend installing updates as soon as they become available, as they contain fixes for known vulnerabilities that could otherwise be exploited.
