Got this update this morning, anyone know what change this has?
Sent from my 306SH
here you can find information Patch info
I am holding off on this update in hopes that a root method will be discovered. But, I am curious to see if they fixed the GraphicsBufferOverflow issue in libui.so and GraphicsBuffer.cpp. (CVE-2015-1474) Sprint is always so vague in their release notes. "Security patch" and "bug fixes" could mean anything. If someone has already applied this update, see if bluebox trust scanner still shows that the vulnerability is present.
Sent from my non-rooted 306SH
TechInMD said:
I am holding off on this update in hopes that a root method will be discovered. But, I am curious to see if they fixed the GraphicsBufferOverflow issue in libui.so and GraphicsBuffer.cpp. (CVE-2015-1474) Sprint is always so vague in their release notes. "Security patch" and "bug fixes" could mean anything. If someone has already applied this update, see if bluebox trust scanner still shows that the vulnerability is present.
Sent from my non-rooted 306SH
Click to expand...
Click to collapse
All Patched.
Would anyone happen to have the 232 update zip laying around?
Related
Can anyone confirm if the new system software update (1.47.651.1) actually fix the grounding issue?
Fixed mine.. I tested it in all the spots it did NOT work (couch, etc) and it does now
Yes it's 100% fixed on mine.
confirmed its fixed
Great to know it can be fixed easily but I already rooted my phone...
krosemm said:
Great to know it can be fixed easily but I already rooted my phone...
Click to expand...
Click to collapse
I wouldn't be too "" about it... I'm in the opposite boat. I kind of wish I had rooted my phone and waited for a rooted update (which was just a few hours), because what I'm reading now it currently isn't possible for me to root.
think unrevoked people found another root method already.
muncheroo said:
think unrevoked people found another root method already.
Click to expand...
Click to collapse
You have a source for that? The last I heard they had released an update for those who hadn't updated yet (and it was experiencing issues updating the radio). But no news for those who had already updated.
Hi all,
Hopefully I am asking in the right place here - it is my first question regarding the Moto X Style.
I got my phone at the end of last week. I decided to unlock the bootloader right from the off as it requires a full wipe. I see that people are seeing the Marshmallow update rolling out in Europe. My question is two fold really.
Firstly, should I receive the OTA update with an unlocked bootloader? Based on what I have read, it looks to me like I should get the update.
Secondly, what "decides" if the update is available to a given phone? When I check for a software update I get the message that the phone is up to date. I'm happy to wait a while but I am also curious how the update rolls out.
Just for extra info, the phone reports as an "XT1572" and the system version says "23.21.18.clark_reteu.reteu.en.EU reteu"
Thanks for any pointers
Just sideload the zip from this thread:
http://forum.xda-developers.com/showthread.php?p=64248551
kadopt said:
Just sideload the zip from this thread:
http://forum.xda-developers.com/showthread.php?p=64248551
Click to expand...
Click to collapse
Thanks for that, I had seen and I will use the sideload method if I don't see the OTA update soon.
My curiosity is more about the mechanics of the OTA method and why my phone does not see an update when I tell it to go and check vs others already seeing it.
user7743 said:
Thanks for that, I had seen and I will use the sideload method if I don't see the OTA update soon.
My curiosity is more about the mechanics of the OTA method and why my phone does not see an update when I tell it to go and check vs others already seeing it.
Click to expand...
Click to collapse
My device is a retfr and didn't receive the update while other users had it, so I just sideloaded it. The update seems to be universal for all eu devices.
user7743 said:
Thanks for that, I had seen and I will use the sideload method if I don't see the OTA update soon.
My curiosity is more about the mechanics of the OTA method and why my phone does not see an update when I tell it to go and check vs others already seeing it.
Click to expand...
Click to collapse
Usually the rollouts are sent on batches and not all at once. I'm not sure if the criteria they use.
A set of exploits has been found by Check Point, allowing malicious apps to get root privilege.
blog.checkpoint.com/2016/08/07/quadrooter/
I'll turn off OTA from now on and wait for tools that make use of this exploit.
QuadRooter is a set of four vulnerabilities affecting Android devices built using Qualcomm chipsets. Qualcomm is the world’s leading designer of LTE chipsets with a 65% share of the LTE modem baseband market. If any one of the four vulnerabilities is exploited, an attacker can trigger privilege escalations for the purpose of gaining root access to a device.
Click to expand...
Click to collapse
How do you turn off ota ? I can't find it
there are 4 exploits that are already patched
might be a way if you have pre-April firmware installed
https://gwolf2u.com/quadrooter-android-security-bugs-affect-over-900-million-devices/
I have 3 of the 4 exploits. I have Sprint
I have the latest v10d firmware on my H850 and the app shows me 4 of 4 vulnerable.
2016-06-01 security patch
fsi09 said:
I have the latest v10d firmware on my H850 and the app shows me 4 of 4 vulnerable.
2016-06-01 security patch
Click to expand...
Click to collapse
mine as well
on v10d
H868 reports 4/4 with the latest security patch.
For those who want to root their G5, search for "update" in Settings and turn off auto update.
Is this what we've been waiting for? Ridiculously excited if so, will this help rs988?
muppetmaster916 said:
Is this what we've been waiting for? Ridiculously excited if so, will this help rs988?
Click to expand...
Click to collapse
Download the Quadrooter Scanner and see if 4/4 vulnerabilities. If so, hope is right there.
cdiscrete said:
Download the Quadrooter Scanner and see if 4/4 vulnerabilities. If so, hope is right there.
Click to expand...
Click to collapse
I have 4/4, will this lead to development for our phones?
muppetmaster916 said:
I have 4/4, will this lead to development for our phones?
Click to expand...
Click to collapse
Yes. The last step is a tool that makes use of these vulnerabilities. That's what we are waiting for.
I've looked,searched and looked again.I can not find the turn off automatic updates. Can some one screen shot please. I posted a picture,there is no option for it
On Latest OTA installed, on sprint. I have 3 of the four
4/4 south América H840 variant here, i hope we do get root
AT&T H820, 4/4 shown here with April 01 security update. Will pledge $50 towards the bounty if someone can make use of this.
RS988 with 2016-06-01 Android security patch level. 4/4 vulnerabilities. If this is what we were waiting for, I'm excited!
It's not, I spoke to jcase earlier and he pretty much stated that until a solution to the locked bootloader is found we're screwed. No bump possibility either.
muppetmaster916 said:
It's not, I spoke to jcase earlier and he pretty much stated that until a solution to the locked bootloader is found we're screwed. No bump possibility either.
Click to expand...
Click to collapse
But at least we can get some xposed stuff right?
BR7fan said:
I've looked,searched and looked again.I can not find the turn off automatic updates. Can some one screen shot please. I posted a picture,there is no option for it
Click to expand...
Click to collapse
Seems your Settings is different from mine.
We need a great hacker for this exploit to work..
I will patiently wait
Hey,if any of you guys have heard about qualcums Quadrooter bug.
(http://blog.checkpoint.com/2016/08/07/quadrooter/)
I used an app to check and got positive result(affected,vulnerable) (https://play.google.com/store/apps/details?id=com.checkpoint.quadrooter)
-i9300i
-motion rom
Well... "Congrats"... Did you try to look for a patch on how to close that ?
And if even if you patch it... How do you know, that it hasn't been already exploited ?
I have i9300, so I suggest that I'm not affected by this.
I didn't update through OTA, was done through Uppercut. Still have the NRD90M Build number, not sure if that matters. Any help would be greatly appreciated. I've searched the forums but maybe im not looking in the right places?
Whats the security patch date.
It would still be 90M if you had taken the OTA. LG releases incremental updates within builds for security patches and bug fixes which change the software versions i.e. from 10d to 10i. Currently, there is no way to root 10i. Interestingly enough, 10i is roll-back friendly, so if a TOT or KDZ (think of them as Google Factory Images to flash) existed of 10d (and an official one, the only kind you can flash properly to rollback, doesn't!) you could flash it and be able to root.
me2151 said:
Whats the security patch date.
Click to expand...
Click to collapse
Dec .1st
kibmikey1 said:
It would still be 90M if you had taken the OTA. LG releases incremental updates within builds for security patches and bug fixes which change the software versions i.e. from 10d to 10i. Currently, there is no way to root 10i. Interestingly enough, 10i is roll-back friendly, so if a TOT or KDZ (think of them as Google Factory Images to flash) existed of 10d (and an official one, the only kind you can flash properly to rollback, doesn't!) you could flash it and be able to root.
Click to expand...
Click to collapse
Hope one comes out soon, phone feels snappier with this update. Thanks for the info
kibmikey1 said:
It would still be 90M if you had taken the OTA. LG releases incremental updates within builds for security patches and bug fixes which change the software versions i.e. from 10d to 10i. Currently, there is no way to root 10i. Interestingly enough, 10i is roll-back friendly, so if a TOT or KDZ (think of them as Google Factory Images to flash) existed of 10d (and an official one, the only kind you can flash properly to rollback, doesn't!) you could flash it and be able to root.
Click to expand...
Click to collapse
90M wouldn't matter in this case. If its security patch Dec. 1 it would most likely still work. Sprint came out with ZV5 and its Dec.1 dirtycow still works. Meaning Recowvery would work. The dirtycow patch is Dec. 5
The question is. Has anyone actually TRIED?
me2151 said:
90M wouldn't matter in this case. If its security patch Dec. 1 it would most likely still work. Sprint came out with ZV5 and its Dec.1 dirtycow still works. Meaning Recowvery would work. The dirtycow patch is Dec. 5
The question is. Has anyone actually TRIED?
Click to expand...
Click to collapse
The update was put out specifically to patch the dirty cow exploit. It was released on the 21st, and while I haven't personally tried recowvery on I myself, I'm sure it won't work.
kibmikey1 said:
The update was put out specifically to patch the dirty cow exploit. It was released on the 21st, and while I haven't personally tried recowvery on I myself, I'm sure it won't work.
Click to expand...
Click to collapse
Are you on 10i? If so just give it a shot. worst case scenario nothing happens and you waste 5 minutes. best case you get root. We on sprint thought the same thing. Our ZV5(Dec.1 patch) update wasn't released until like the 15th.
me2151 said:
Are you on 10i? If so just give it a shot. worst case scenario nothing happens and you waste 5 minutes. best case you get root. We on sprint thought the same thing. Our ZV5(Dec.1 patch) update wasn't released until like the 15th.
Click to expand...
Click to collapse
You're right, it still works. I'm not really sure why everyone was reporting that it patches the exploit, but in any case, recowvery still works on 10i. Here's hoping an official TOT or KDZ comes out for rollback purposes when it eventually does get patched!
kibmikey1 said:
You're right, it still works. I'm not really sure why everyone was reporting that it patches the exploit, but in any case, recowvery still works on 10i. Here's hoping an official TOT or KDZ comes out for rollback purposes when it eventually does get patched!
Click to expand...
Click to collapse
Yea... It was the same case on our update. We all thought it patched it and no one was doing it. One random person said he tried and it worked.
Congrats on your reroot!
whaa? anyone else able to confirm recowvery on 10i works?
dimm0k said:
whaa? anyone else able to confirm recowvery on 10i works?
Click to expand...
Click to collapse
It does!!
How did you guys get the update? I'm still on 10D and my system says I'm up to date.
Same here. "up to date". For the first time I actually want to try an update and I can't get it. lol
planetbeen said:
Same here. "up to date". For the first time I actually want to try an update and I can't get it. lol
Click to expand...
Click to collapse
Lg device bridge
Sent from my LG-H918 using XDA Premium HD app
planetbeen said:
Same here. "up to date". For the first time I actually want to try an update and I can't get it. lol
Click to expand...
Click to collapse
I did it via the 10i KDZ file and using LGUP and Uppercut. I had no choice i bricked my phone and lost twrp in the process. It was the only way to restore it.
I updated to 10i with LG Bridge and I grabbed the required .dll for LGUP, and I ran dirty cow again (you must use manual method), put SuperSU into the memory card.
I successfully entered TWRP and rooted 10i.