Google has released a crucial security patch for Android devices to address a serious vulnerability affecting Dolby audio components. The bug could allow hackers to execute malicious code through audio attachments. Although Google fixed the issue last month, the broader release is now available for all Android phones.
Adam Boynton, Senior Security Strategy Manager EMEIA at Jamf, emphasized the importance of addressing this long-running flaw discovered in 2025, known as CVE-2025-54957. This flaw in Dolby’s DD+ Unified Decoder enables attackers to run malicious code without user interaction, posing a significant risk to Android users.
It is advisable for Android users to update their devices promptly to safeguard against potential security threats. While iPhone users are not impacted by this specific vulnerability, they are encouraged to stay vigilant by checking for and installing any available updates. Boynton stressed the significance of regular patching as a key measure to mitigate mobile risks across both Android and iOS platforms.
To update your Android phone, navigate to the Settings app, select System, then Software updates to check for available updates. Follow the on-screen instructions to ensure your device is up to date and secure.