Google has issued a crucial security patch for Android devices to address a significant bug affecting Dolby audio components. The bug could potentially allow hackers to exploit audio attachments to run malicious code on smartphones. Although Google had initially fixed this issue last month, the latest update is now being rolled out to all Android phones.
Adam Boynton, Senior Security Strategy Manager EMEIA at Jamf, emphasized the importance of addressing this vulnerability promptly. The bug, known as CVE-2025-54957, targets Dolby’s DD+ Unified Decoder, enabling attackers to execute malicious code without user interaction, particularly through audio attachments and voice messages on Android devices.
It is advised for Android users to update their device settings to ensure they are protected. While iPhones are not susceptible to this specific bug, Apple users are encouraged to stay vigilant by checking for and installing any available updates promptly to safeguard their personal data.
Regular patching is essential in mitigating mobile security risks, regardless of the operating system used. Boynton emphasized the significance of keeping devices updated to combat modern mobile threats effectively.
To update your Android phone:
1. Open the Settings app on your device.
2. Navigate to System and then Software updates.
3. Check for the update status.
4. Follow the on-screen instructions to complete the update.
