GrapheneOS isn't vulnerable to the 3 recent Linux memory logic vulnerabilities (discuss.grapheneos.org) 43 points by Cider9986 2mo ago ↗ HN
[–] AmazingEveryDay 2mo ago ↗ I wonder, are there any instances of the recent exploits enabling phone rooting? Article kinda implies there might be 1 out of the 3. [–] ChocolateGod 2mo ago ↗ How I read it is that the Android kernel disables the features 2 of the exploits used, and even if it did they're all caught by selinux. [–] nbf_1995 2mo ago ↗ I had the same idea. My understanding is that Android isn't vulnerable to these because it doesn't have a user accessible setuid binary.
[–] ChocolateGod 2mo ago ↗ How I read it is that the Android kernel disables the features 2 of the exploits used, and even if it did they're all caught by selinux.
[–] nbf_1995 2mo ago ↗ I had the same idea. My understanding is that Android isn't vulnerable to these because it doesn't have a user accessible setuid binary.
3 comments
[ 4.1 ms ] story [ 20.3 ms ] thread