Xiaomi Releases Urgent Update Fixing 107 Security Flaws Across Its Smartphone Line; Over 17 Models Are on the List, Check It Out!

Written by Valdemar Medeiros

Published on 03/12/2025 at 12:01

Xiaomi libera atualização urgente com correção de 107 falhas de segurança em toda a linha de smartphones; mais de 18 modelos estão na lista, confira!

Be the first to react!

Xiaomi Releases Urgent Update That Fixes 107 Security Vulnerabilities in Android, Including Zero-Day. Check If Your Smartphone Is on the List.

The December security update arrives as one of the most important in recent months for Xiaomi users. Google confirmed a robust package with 107 vulnerabilities fixed, including two zero-day vulnerabilities already exploited in real attacks. The update covers devices running Android 13, 14, 15, and 16, as well as Xiaomi devices with HyperOS, which directly rely on the monthly Android bulletin to keep the ecosystem secure. This is the first major wave of fixes affecting nearly all recent models and users need to check immediately if their device is within the update cycle.

Xiaomi tends to quickly incorporate Google’s security fixes, especially when zero-day vulnerabilities are involved. In December’s case, the focus is on protecting personal information, preventing privilege escalation, and reinforcing system integrity against silent attacks. With more Brazilian smartphones operating on HyperOS, the arrival of this package becomes crucial for those who need to keep their phones protected for professional, banking, and daily browsing use.

Xiaomi Update Fixes 107 Vulnerabilities and Includes Two Zero-Day Already Exploited in Attacks

According to the bulletin released last Tuesday (02), the update was divided into two main blocks. The first, 2025-12-01, brings 51 fixes focused on the structure and internal libraries of Android.

ARTICLE CONTINUES BELOW

Fixes Also Involve Snapdragon, Dimensity, and Samsung Modules

In addition to the vulnerabilities directly addressed by Google, the December package includes critical updates from vendors. For Xiaomi users — who heavily depend on Qualcomm and MediaTek chips — this means security fixes in even deeper layers of hardware.

Qualcomm fixed serious vulnerabilities CVE-2025-47319 and CVE-2025-47372, related to memory issues and code execution. Premium devices with Snapdragon 8 Gen and mid-range devices with Snapdragon 6 and 7 Gen receive additional protection with this patch.

MediaTek, responsible for the Dimensity line used in various Redmi models, also provided specific fixes for its firmware, reducing exploitation risks via radio, connectivity, and internal codecs.

Even Samsung modules, used in sensors and drivers present in Xiaomi devices, have been updated, ensuring that the entire set of components is protected in the same way.

The Impact for Xiaomi Users and What to Expect in the Coming Days

As Xiaomi tends to quickly integrate Android patches into HyperOS, the trend is that devices launched between 2022 and 2025 will receive the update first, especially models from the Xiaomi 12, 13, 14, Redmi Note 12, 13, 14, and recent POCO lines.

Older models may receive only part of the fixes, depending on the manufacturer’s availability.

The first December packages have already started appearing in international markets and are expected to reach Brazil over the coming weeks.

For users relying on banking apps, corporate networks, and biometric authentication, keeping the system updated is crucial, especially in light of zero-day vulnerabilities.

How to Know If Your Xiaomi Is on the List

Xiaomi is expected to release individual bulletins for each line, and the quickest way to check is to access:

Settings → About Phone → HyperOS Version / Security Update.

If the patch level displays “2025-12-01” or “2025-12-05”, your device has already received the fixes. If not, it is recommended to force the search for an update or wait for the gradual rollout to your region.

Here Is the List of Devices That Are Guaranteed to Receive HyperOS 3 in December:

Xiaomi 14 Ultra
Xiaomi 14
Xiaomi 14T Pro
Xiaomi 14T
Xiaomi MIX Flip
Xiaomi Pad Mini
Redmi Note 14 Pro 4G
Redmi Note 14 4G
Redmi 14C
Redmi 13 / 13X
Redmi Pad 2 (4G and Wi-Fi)
POCO F6 Pro
POCO X6 Pro
POCO M7
POCO M6
POCO C75

Xiaomi Releases Urgent Update Fixing 107 Security Flaws Across Its Smartphone Line; Over 17 Models Are on the List, Check It Out!

Xiaomi Releases Urgent Update That Fixes 107 Security Vulnerabilities in Android, Including Zero-Day. Check If Your Smartphone Is on the List.

Xiaomi Update Fixes 107 Vulnerabilities and Includes Two Zero-Day Already Exploited in Attacks

Fixes Also Involve Snapdragon, Dimensity, and Samsung Modules

The Impact for Xiaomi Users and What to Expect in the Coming Days

How to Know If Your Xiaomi Is on the List

Here Is the List of Devices That Are Guaranteed to Receive HyperOS 3 in December:

With billions in loans, China is rebuilding Nigeria’s railway network from scratch, abandoning the British colonial tracks that have turned to scrap and creating a corridor of over 1,300 km to take the load off the roads of Africa’s largest economy.

A British company has installed in the middle of the ocean the world’s first floating platform that generates electricity 24 hours a day from the temperature difference between the surface and the depths of the Atlantic, without relying on wind or sun.

China is building an artificial island in the middle of the sea, covering 20 km², to construct the largest offshore airport in the world, the Dalian Jinzhouwan. This $4.3 billion project is anchored on more than 3,000 pillars embedded in the rock beneath the ocean and is scheduled to open in 2035.

Great Atlantic Sargassum Belt has ceased to be a climatic phenomenon and has become a biological system that feeds on itself, with 8,000 kilometers in length, 37 million tons of algae, and scientists confirm that it is now permanent.

Forget petroleum-based asphalt: a Scottish company transforms 684,000 plastic bottles into one kilometer of road that is 60% more resistant and up to 10 times more durable, and the technology has already started replacing traditional asphalt in more than 30 countries.

A robot named Walter does the work of five bricklayers per hour and can save the construction industry, where the average age of professionals is 46 years and almost no one wants to learn the trade anymore, in the United Kingdom.

Austrian engineers have developed an inflatable concrete technology that transforms flat slabs into domes using only air pressure, eliminating scaffolding and temporary forms, and potentially changing the way bridges, tunnels, and curved roofs are constructed worldwide.

Become a Laboratory Technician at the Federal Institute for free and without leaving home: IFMA opens 100 spots in an online course without an exam, with a live draw on YouTube.

Panasonic enters the era of electric bicycles with the new Xealt L3 equipped with high-performance reinforced axles, hydraulic disc brakes, more durable urban tires, and a range of up to 90 km with a recharge time of just 4 hours.

4 used cars starting from R$ 50,000 with a flex engine achieve up to 17.1 km/l, come with six airbags, multimedia with Android Auto, and a trunk of up to 475 liters; the list includes Onix Plus, HB20S, Peugeot 208, and Mobi.

Brazil’s most feared highway will become the “most sustainable road on the planet” with a R$ 1.5 billion project, 170 wildlife crossings, 50 bridges, and environmental protection in an area of 40,000 km² in the heart of the Amazon.

Pope Leo XIV meets Ferrari Luce, sits in the driver’s seat, takes the wheel, and sees the electric car worth R$ 3.2 million that divided opinions in the world of supercars.

Xiaomi Releases Urgent Update Fixing 107 Security Flaws Across Its Smartphone Line; Over 17 Models Are on the List, Check It Out!

Xiaomi Releases Urgent Update That Fixes 107 Security Vulnerabilities in Android, Including Zero-Day. Check If Your Smartphone Is on the List.

Xiaomi Update Fixes 107 Vulnerabilities and Includes Two Zero-Day Already Exploited in Attacks

Fixes Also Involve Snapdragon, Dimensity, and Samsung Modules

The Impact for Xiaomi Users and What to Expect in the Coming Days

How to Know If Your Xiaomi Is on the List

Here Is the List of Devices That Are Guaranteed to Receive HyperOS 3 in December:

With billions in loans, China is rebuilding Nigeria’s railway network from scratch, abandoning the British colonial tracks that have turned to scrap and creating a corridor of over 1,300 km to take the load off the roads of Africa’s largest economy.

A British company has installed in the middle of the ocean the world’s first floating platform that generates electricity 24 hours a day from the temperature difference between the surface and the depths of the Atlantic, without relying on wind or sun.

China is building an artificial island in the middle of the sea, covering 20 km², to construct the largest offshore airport in the world, the Dalian Jinzhouwan. This $4.3 billion project is anchored on more than 3,000 pillars embedded in the rock beneath the ocean and is scheduled to open in 2035.

Great Atlantic Sargassum Belt has ceased to be a climatic phenomenon and has become a biological system that feeds on itself, with 8,000 kilometers in length, 37 million tons of algae, and scientists confirm that it is now permanent.

Forget petroleum-based asphalt: a Scottish company transforms 684,000 plastic bottles into one kilometer of road that is 60% more resistant and up to 10 times more durable, and the technology has already started replacing traditional asphalt in more than 30 countries.

A robot named Walter does the work of five bricklayers per hour and can save the construction industry, where the average age of professionals is 46 years and almost no one wants to learn the trade anymore, in the United Kingdom.

Austrian engineers have developed an inflatable concrete technology that transforms flat slabs into domes using only air pressure, eliminating scaffolding and temporary forms, and potentially changing the way bridges, tunnels, and curved roofs are constructed worldwide.

Panasonic enters the era of electric bicycles with the new Xealt L3 equipped with high-performance reinforced axles, hydraulic disc brakes, more durable urban tires, and a range of up to 90 km with a recharge time of just 4 hours.

Scientists from Brazil, France, and the United Kingdom warn that the flow of the Amazon River has increased by up to 60% in floodable areas and may affect fish, floodplains, and riverside communities.

Extreme cold snap in Brazil turns pasture into ice and kills cattle en masse from hypothermia on farms in Mato Grosso do Sul.

Scientists have made a decision: the largest volcanic caldera in the world is 150 km in diameter, hidden more than 5,000 meters in the Pacific, and easily surpasses Yellowstone.

China will send an astronaut to live for a year in orbit on the Tiangong space station, turning the mission into a decisive test for reaching the Moon.

Become a Laboratory Technician at the Federal Institute for free and without leaving home: IFMA opens 100 spots in an online course without an exam, with a live draw on YouTube.

Panasonic enters the era of electric bicycles with the new Xealt L3 equipped with high-performance reinforced axles, hydraulic disc brakes, more durable urban tires, and a range of up to 90 km with a recharge time of just 4 hours.

4 used cars starting from R$ 50,000 with a flex engine achieve up to 17.1 km/l, come with six airbags, multimedia with Android Auto, and a trunk of up to 475 liters; the list includes Onix Plus, HB20S, Peugeot 208, and Mobi.

Brazil’s most feared highway will become the “most sustainable road on the planet” with a R$ 1.5 billion project, 170 wildlife crossings, 50 bridges, and environmental protection in an area of 40,000 km² in the heart of the Amazon.

Pope Leo XIV meets Ferrari Luce, sits in the driver’s seat, takes the wheel, and sees the electric car worth R$ 3.2 million that divided opinions in the world of supercars.