Older zero-day Android exploit still affects Google Pixel, Samsung Galaxy and other handhelds

 ( toMpEr | 2019. október 4., péntek - 19:34 )

Due to evidence of in the wild exploit, we are now de-restricting this bug 7 days after reporting to Android.

This issue was patched in Dec 2017 in the 4.14 LTS kernel, AOSP android 3.18 kernel, AOSP android 4.4 kernel, and AOSP android 4.9 kernel, but the Pixel 2 with most recent security bulletin is still vulnerable based on source code review.

Other devices which appear to be vulnerable based on source code review are (referring to 8.x releases unless otherwise stated):
1) Pixel 2 with Android 9 and Android 10 preview
2) Huawei P20
3) Xiaomi Redmi 5A
4) Xiaomi Redmi Note 5
5) Xiaomi A1
6) Oppo A3
7) Moto Z3
8) Oreo LG phones (run same kernel according to website)
9) Samsung S7, S8, S9

The bug was allegedly being used or sold by the NSO Group
POC to get arbitrary kernel r/w included

forrás:
https://bugs.chromium.org/p/project-zero/issues/detail?id=1942
https://www.notebookcheck.net/Older-zero-day-Android-exploit-still-affects-Google-Pixel-Samsung-Galaxy-and-other-handhelds.436910.0.html
https://twitter.com/mobilesecurity_/status/1180011175226032128