Samsung’s April 2026 security patch is now rolling out, starting with the Galaxy S26 lineup. The update doesn’t arrive with the expected One UI 8.5 release, which may drop later this month on the Galaxy S25, but it still brings critical fixes worth paying attention to.
This month’s bulletin covers 33 CVE vulnerabilities affecting Android systems broadly. Fourteen are marked critical, 18 high-level, and one moderate. Among the most serious are CVE-2026-0039 through CVE-2026-0044, all flagged at the highest severity tier. Samsung also addressed four high-level semiconductor-specific vulnerabilities and disclosed 10 SVE issues tied directly to Galaxy devices. Most of these span Android 14, 15, and 16, though SVE-2025-1863 only touches Android 15.
Not every vulnerability listed applies to Samsung hardware. Eleven CVEs don’t affect Galaxy devices at all, and six were already patched in earlier updates. Samsung withholds details on some SVEs for security reasons, which is standard practice but leaves users guessing about real-world risk.
The update is hitting devices on monthly support schedules first. That includes the entire Galaxy S26, S25, S24, S23, and S22 families, plus the foldable Z series from Fold4 and Flip4 forward. Mid-range A-series models like the A57, A56, A55, A54, and A53 are also covered, along with rugged Xcover phones and the Tab Active5 Pro.
Devices on quarterly schedules, especially those still sitting on January 2026 patches, should see the update soon. Tablets and smartwatches typically lag by a few months since their last patches arrived in February or March.
Rollout is gradual and prioritizes flagship and newer mid-range models before trickling down. To check manually, navigate to Settings, then Software update, and select either Download and install on One UI 8.0 or Check for updates on One UI 8.5.
The patch itself isn’t groundbreaking, but it closes real gaps. If your device is eligible, don’t skip it.
