Over The Air: Exploiting Broadcom’s Wi-Fi Stack (Part 2) (Project Zero)
Over The Air: Exploiting Broadcom’s Wi-Fi Stack (Part 2) (Project Zero)
Posted Apr 12, 2017 12:58 UTC (Wed) by excors (subscriber, #95769)In reply to: Over The Air: Exploiting Broadcom’s Wi-Fi Stack (Part 2) (Project Zero) by peter-b
Parent article: Over The Air: Exploiting Broadcom’s Wi-Fi Stack (Part 2) (Project Zero)
The first blog post links to this bug which includes exploit code for Nexus 5, so at least some versions are vulnerable. The Android Security Bulletin for April 2017 says the "Remote code execution vulnerability in Broadcom Wi-Fi firmware" was fixed in Nexus 6, Nexus 6P, Nexus 9, Pixel C, Nexus Player. But there's no mention of a fix for Nexus 5, so it sounds like the latest version is probably still vulnerable. And you can't fix it by using a more recent AOSP derivative since the bug is in the firmware blobs.
Google says "Nexus devices get security patches for at least 3 years from when the device first became available, or at least 18 months from when the Google Store last sold the device, whichever is longer". Apparently the Nexus 5 was first released 3.5 years ago, and discontinued 2 years ago, so it's outside that period.
Now is probably a good time to send your phone off for recycling and buy a new one.
Posted Apr 12, 2017 15:50 UTC (Wed)
by peter-b (subscriber, #66996)
[Link]
Posted Apr 12, 2017 16:53 UTC (Wed)
by NightMonkey (subscriber, #23051)
[Link] (8 responses)
Posted Apr 13, 2017 3:54 UTC (Thu)
by pabs (subscriber, #43278)
[Link]
Posted Apr 13, 2017 9:18 UTC (Thu)
by linusw (subscriber, #40300)
[Link] (1 responses)
Posted Apr 13, 2017 10:32 UTC (Thu)
by excors (subscriber, #95769)
[Link]
You could argue that all hardware should have open source firmware (and provide a free toolchain to build it, and have some way of disabling signature checks so your hardware will accept your modified version, etc), to allow community maintenance after it's officially unsupported. Seems unlikely to happen though, since there are significant costs and essentially no benefits for the people who would have to make that decision.
Posted Apr 13, 2017 12:28 UTC (Thu)
by peter-b (subscriber, #66996)
[Link] (3 responses)
Posted Apr 14, 2017 1:34 UTC (Fri)
by bronson (subscriber, #4806)
[Link] (2 responses)
Frankly, I expect every Android phone 3+ years old is just riddled with security holes. Every last one. (maybe the tiniest exception exists for Lineage/Cyanogen... maybe)
Posted Apr 14, 2017 7:34 UTC (Fri)
by peter-b (subscriber, #66996)
[Link] (1 responses)
I don't doubt you. Frankly, being a software engineer in 2017 is getting to be pretty embarrassing. The horrendously low standard of engineering in this industry's race to the bottom is giving us all a bad name.
Posted Apr 18, 2017 14:42 UTC (Tue)
by ortalo (guest, #4654)
[Link]
Posted Apr 24, 2017 14:20 UTC (Mon)
by paulj (subscriber, #341)
[Link]
Posted Apr 13, 2017 13:49 UTC (Thu)
by JFlorian (guest, #49650)
[Link]
Over The Air: Exploiting Broadcom’s Wi-Fi Stack (Part 2) (Project Zero)
Over The Air: Exploiting Broadcom’s Wi-Fi Stack (Part 2) (Project Zero)
Over The Air: Exploiting Broadcom’s Wi-Fi Stack (Part 2) (Project Zero)
Over The Air: Exploiting Broadcom’s Wi-Fi Stack (Part 2) (Project Zero)
The hardware has a future there.
Over The Air: Exploiting Broadcom’s Wi-Fi Stack (Part 2) (Project Zero)
Over The Air: Exploiting Broadcom’s Wi-Fi Stack (Part 2) (Project Zero)
Over The Air: Exploiting Broadcom’s Wi-Fi Stack (Part 2) (Project Zero)
Over The Air: Exploiting Broadcom’s Wi-Fi Stack (Part 2) (Project Zero)
Over The Air: Exploiting Broadcom’s Wi-Fi Stack (Part 2) (Project Zero)
The last decade brought me gray hair at a fast pace ; and that's probably not only due to age.
And honestly, apart from fingerpointing, I am still wondering what to do to stop the down ride...
"Desperate Software Engineers" would probably not even make a decent TV show.
Over The Air: Exploiting Broadcom’s Wi-Fi Stack (Part 2) (Project Zero)
Over The Air: Exploiting Broadcom’s Wi-Fi Stack (Part 2) (Project Zero)