Overview

• Google's May 2025 Android update addresses CVE-2025-27363, a zero-click FreeType vulnerability actively exploited since March.
• The flaw allows remote code execution via malicious font files and affects all FreeType versions up to 2.13.0, used in Android devices.
• Pixel devices began receiving the update immediately, while other manufacturers like Samsung are rolling out patches over the month.
• Devices running Android 12 or older are unsupported, leaving users at heightened risk unless they upgrade or seek third-party fixes.
• CISA has mandated federal employees update affected devices by May 27 or stop using them, urging broader adoption of the patch.