NewsUpdates

Xiaomi Starts Rolling Out June 2026 Security Patch to First Devices

hyperos update
Avatar for Emir BardakçıEmir Bardakçı
Jun. 15, 2026, 15:15
6 mins read
2 Comments

Xiaomi has started rolling out the June 2026 Android security patch to its first devices. The update is now available for selected Xiaomi and Redmi models in China and EEA regions, confirming that the company has begun public distribution of the latest monthly security improvements. The first confirmed HyperOS 3 builds include Xiaomi 15 Pro, Xiaomi 15 Ultra, Xiaomi 15T Pro, Redmi K70 Ultra, and Xiaomi 14T Pro.

The new update mainly focuses on system security rather than visible interface changes. According to Google’s June 2026 Android Security Bulletin, this month’s patch includes important fixes for Android Framework, System, kernel, chipset, modem, GPU, and vendor-level components. Google also notes that one vulnerability may already be under limited and targeted exploitation, making this update more important than a regular monthly patch.

First Xiaomi Devices Receiving June 2026 Security Patch

The June 2026 security patch has started rolling out to Xiaomi’s first batch of eligible devices. The rollout currently includes China and EEA Global builds. These updates are based on HyperOS 3 and bring the June 2026 Android security patch level to selected flagship and performance-focused models.

  • Xiaomi 15 Pro — China — OS3.0.304.0.WOBCNXM — Jun 01 security patch
  • Xiaomi 15 Ultra — China — OS3.0.306.0.WOACNXM — Jun 01 security patch
  • Xiaomi 15T Pro — EEA Global — OS3.0.304.0.WOSEUXM — Jun 01 security patch
  • Xiaomi 14T Pro — EEA Global — OS3.0.302.0.WNNEUXM — Jun 01 security patch

This first rollout shows that Xiaomi has already started integrating Google’s latest Android security fixes into public HyperOS builds. More Xiaomi, Redmi, and POCO devices are expected to receive the same monthly security patch in the coming days and weeks.

Expected Xiaomi OTA Changelog

Xiaomi usually keeps monthly security update changelogs very short. Users receiving this update may see a simple changelog similar to the following:

  • Updated the Android Security Patch to June 2026.
  • Increased system security.
  • Improved overall system stability.

Although the OTA changelog may look small, the actual security content behind this update is much larger. The June 2026 Android Security Bulletin includes multiple critical and high-severity vulnerabilities affecting Android core components and vendor-level hardware parts.

What Has Changed?

The June 2026 Android security patch focuses on fixing vulnerabilities across Android Framework, System, kernel, and vendor components. These improvements help protect devices against privilege escalation, denial of service, information disclosure, and other high-risk security issues.

  • Fixed critical Android Framework vulnerabilities.
  • Fixed multiple Android System component vulnerabilities.
  • Improved protection against remote privilege escalation risks.
  • Improved protection against local privilege escalation risks.
  • Fixed denial-of-service vulnerabilities.
  • Fixed information disclosure vulnerabilities.
  • Added Android kernel-level security improvements.
  • Added Qualcomm security patches.
  • Added MediaTek security patches.
  • Improved overall Android platform security on HyperOS devices.

Android Framework Fixes

One of the most important parts of this update is related to the Android Framework component. Google states that the most severe vulnerability in this section could allow remote escalation of privilege without requiring additional execution privileges. User interaction is not required for exploitation, which makes this fix especially important for Android users.

  • CVE-2025-65018 — Critical elevation of privilege vulnerability fixed.
  • CVE-2025-64720 — Critical denial-of-service vulnerability fixed.
  • CVE-2025-48595 — High-severity elevation of privilege vulnerability fixed.

Google also notes that CVE-2025-48595 may be under limited and targeted exploitation. This makes the June 2026 patch more important than a normal monthly security update, especially for users who want the latest protection against known Android security risks.

Android System Component Fixes

The Android System component also received many important security fixes. The most severe issue in this section could allow local escalation of privilege without requiring additional execution privileges. User interaction is not needed for exploitation.

  • CVE-2026-0043 — Critical System vulnerability fixed.
  • CVE-2026-0097 — Critical System vulnerability fixed.
  • CVE-2026-21352 — Critical System vulnerability fixed.
  • CVE-2026-21353 — Critical System vulnerability fixed.
  • CVE-2025-64505 — Critical denial-of-service vulnerability fixed.
  • CVE-2026-0039 — Critical denial-of-service vulnerability fixed.
  • CVE-2026-0040 — Critical denial-of-service vulnerability fixed.
  • CVE-2026-0041 — Critical denial-of-service vulnerability fixed.
  • CVE-2026-0042 — Critical denial-of-service vulnerability fixed.
  • CVE-2026-0044 — Critical denial-of-service vulnerability fixed.
  • CVE-2026-0051 — Critical denial-of-service vulnerability fixed.
  • CVE-2026-0052 — Critical denial-of-service vulnerability fixed.
  • CVE-2026-0080 — Critical denial-of-service vulnerability fixed.

These fixes improve protection against privilege escalation, denial of service, information disclosure, and remote code execution risks on Android-based devices.

2026-06-01 vs 2026-06-05 Patch Level

The Android June 2026 Security Bulletin is divided into two patch levels. This distinction is important because some devices may receive the 2026-06-01 patch level, while others may receive the fuller 2026-06-05 patch level depending on vendor integration and rollout schedule.

2026-06-01 Security Patch Level

  • Includes Android Framework security fixes.
  • Includes Android System component fixes.
  • Includes Google Play system update fixes.
  • Targets core Android platform vulnerabilities.
  • Applies to supported Android 14, Android 15, Android 16, and Android 16 QPR2 builds.

2026-06-05 Security Patch Level

  • Includes all 2026-06-01 security fixes.
  • Adds Android kernel security patches.
  • Adds Qualcomm component security fixes.
  • Adds Qualcomm closed-source component fixes.
  • Adds MediaTek modem, preloader, and geniezone fixes.
  • Adds Unisoc modem security fixes.
  • Adds Imagination PowerVR GPU security fixes.

The first Xiaomi updates listed above show the Jun 01 patch level. This means they mainly focus on the 2026-06-01 Android security patch content.

Vendor-Level Security Improvements

The full June 2026 patch also includes several vendor-level security fixes. These updates are important for Xiaomi, Redmi, and POCO devices because Xiaomi uses Qualcomm Snapdragon and MediaTek Dimensity platforms across many models.

  • Kernel: Fixed a high-severity vulnerability in the Net subcomponent.
  • Qualcomm: Fixed Display component vulnerabilities.
  • Qualcomm closed-source components: Fixed several critical and high-severity vulnerabilities.
  • MediaTek: Fixed modem, preloader, and geniezone security issues.
  • Imagination PowerVR GPU: Fixed multiple high-severity GPU vulnerabilities.
  • Unisoc: Fixed multiple modem-related security vulnerabilities.

Why This Update Matters for Xiaomi Users

The June 2026 security patch may not bring new HyperOS features, but it strengthens the security foundation of Xiaomi devices. For users, this means better protection against known Android vulnerabilities and improved platform-level security.

  • It improves overall device security.
  • It fixes critical Android Framework issues.
  • It fixes multiple Android System vulnerabilities.
  • It improves protection against known security threats.
  • It may include important chipset-level fixes depending on patch level.
  • It is recommended for all eligible Xiaomi, Redmi, and POCO users.

How to Download the Update

Users can check for the new update directly from the device settings. Since Xiaomi releases OTA updates in stages, availability may vary depending on model, region, and rollout batch.

  • Open Settings.
  • Tap About phone.
  • Open HyperOS version.
  • Tap Check for updates.

If the update is not available yet, users may need to wait until the OTA reaches their device or region. Xiaomi usually expands monthly security updates gradually across China, Global, EEA, India, Turkey, Indonesia, Taiwan, and other regional builds.

More Devices Will Receive It Soon

The rollout has started with selected Xiaomi and Redmi models, but more devices are expected to receive the June 2026 security patch soon. Flagship models usually receive new monthly patches first, followed by upper-midrange and wider regional releases.

  • More Xiaomi 15 series builds may follow soon.
  • More Xiaomi 14 series and Xiaomi 14T series models may receive the patch later.
  • Additional Redmi and POCO devices are expected to join the rollout gradually.
  • Regional availability may differ between China, Global, EEA, India, Turkey, Indonesia, and Taiwan builds.

Security Update
MemeOS Enhancer Download
Avatar for Emir Bardakçı

Emir Bardakçı

Co-founder & HyperOS Expert

Keeping a pulse on Xiaomi, HyperOS, and the Android world. Tech enthusiast, photography lover, and detailed reviewer.

Related Articles

Comments
  • Jãr Ãyë 38 minutes ago

    Now give hyper os 3 update too me

    Reply
    (2)
    Dislike (0)
  • XiaomiFan 38 seconds ago

    Nice. Still waiting for HyperOS 3.1 to be released on my REDMI Note 14 Pro+ 5G tho 🙂🙂

    Reply
    (0)
    Dislike (0)

Leave a Reply

Your email address will not be published. Required fields are marked *