Android is vulnerable to this bug (CVE-2014-3153).The fix has been already
released:
Normal
0
14
false
false
false
IT
X-NONE
X-NONE
MicrosoftInternetExplorer4
/* Style Definitions */
table.MsoNormalTable
{mso-style-name:"Tabella normale";
mso-tstyle-rowband-size:0;
mso-tstyle-colband-size:0;
mso-style-noshow:yes;
mso-style-priority:99;
mso-style-parent:"";
mso-padding-alt:0cm 5.4pt 0cm 5.4pt;
mso-para-margin:0cm;
mso-para-margin-bottom:.0001pt;
mso-pagination:widow-orphan;
font-size:10.0pt;
font-family:"Times New Roman","serif";}
https://github.com/torvalds/linux/commit/e9c243a5a6de0be8e584c604d353412584b592f8cheers
Normal
0
14
false
false
false
IT
X-NONE
X-NONE
MicrosoftInternetExplorer4
/* Style Definitions */
table.MsoNormalTable
{mso-style-name:"Tabella normale";
mso-tstyle-rowband-size:0;
mso-tstyle-colband-size:0;
mso-style-noshow:yes;
mso-style-priority:99;
mso-style-parent:"";
mso-padding-alt:0cm 5.4pt 0cm 5.4pt;
mso-para-margin:0cm;
mso-para-margin-bottom:.0001pt;
mso-pagination:widow-orphan;
font-size:10.0pt;
font-family:"Times New Roman","serif";}
----Messaggio originale----
Da: [email protected]
Data: 19/06/2014 6.33
A: <[email protected]>
Cc: <[email protected]>
Ogg: Re: [android-security-discuss] Futex Local Permission Escalation
Vulnerability
Hi Anant,
Yup, that's what i read too. But towelroot didn't release any source code, not
sure how he did it. Assume he modified the futex system call vulnerability for
Android.
On Thursday, June 19, 2014 11:45:35 AM UTC+8, Anant Shrivastava wrote:As far as
i remember TowelRoot by geohot is exploiting this specific issue.
Please correct if i am wrong.
Anant Shrivastava
Web : http://anantshri.info
On Thu, Jun 19, 2014 at 9:01 AM, David Billa <[email protected]> wrote:
Recently it was reported that a bug in the futex system call will lead to a
local permission escalation vulnerability in linux.
http://seclists.org/oss-sec/2014/q2/467
Does it affect the Android kernel too since it is also based on the Linux
kernel?
Anyone has any source code to test whether Android is vulnerable to this?
Thanks In Advance
--
You received this message because you are subscribed to the Google Groups
"Android Security Discussions" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To post to this group, send email to [email protected].
Visit this group at http://groups.google.com/group/android-security-discuss.
For more options, visit https://groups.google.com/d/optout.
--
You received this message because you are subscribed to the Google Groups
"Android Security Discussions" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To post to this group, send email to [email protected].
Visit this group at http://groups.google.com/group/android-security-discuss.
For more options, visit https://groups.google.com/d/optout.
--
You received this message because you are subscribed to the Google Groups
"Android Security Discussions" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To post to this group, send email to [email protected].
Visit this group at http://groups.google.com/group/android-security-discuss.
For more options, visit https://groups.google.com/d/optout.
