Hello. Recently I thought some sort of security issue came up with the pixel 2xl, and you had to be on the latest security patch to be safe. Are old ROMs that don't have this new security update vulnerable?
Not updated rom have security issues.
borthbrushtoothpaste said:
Hello. Recently I thought some sort of security issue came up with the pixel 2xl, and you had to be on the latest security patch to be safe. Are old ROMs that don't have this new security update vulnerable?
Click to expand...
Click to collapse
Just saw this, but obvious answer is obvious. If you need the latest security patch to be safe, then old ROMs without the latest security patch aren't safe to use. They are therefore vulnerable.
Related
Can you guys point me in the right direction. I'm currently on rr remix but my security updates are from September 2017, how do it get the latest security updates?
Thanks!
BrickMe?Naw said:
Can you guys point me in the right direction. I'm currently on rr remix but my security updates are from September 2017, how do it get the latest security updates?
Thanks!
Click to expand...
Click to collapse
You got that from settings > about? That's from the ROM base. You could update firmware to get any that are provided for that, but otherwise you'll have to wait for the developer to update the ROM with a new base.
Truthfully though, it's nothing to worry about. Concern with new possible exploits are mostly overblown. They are discovered by security companies and more times than not, hackers haven't discovered it themselves yet.
Got it, thanks bro!
Just like the topic says, are we vulnerable to this new exploit or not? If so, how can we patch it? I can't seem to find any information regarding the Note 4 being patched, only the Note 5 and thereafter.
JOSHSKORN said:
Just like the topic says, are we vulnerable to this new exploit or not? If so, how can we patch it? I can't seem to find any information regarding the Note 4 being patched, only the Note 5 and thereafter.
Click to expand...
Click to collapse
I too was searching for this answer and a Google search led me to this: https://9to5google.com/2018/01/10/meltdown-spectre-android-updates/
I'm still searching for official info but I'm not surprised the Note 4 isn't getting patched. I'm more miffed my 2016 revision Tab S2 isn't getting patched. That sucks.
beatblaster said:
I too was searching for this answer and a Google search led me to this: https://9to5google.com/2018/01/10/meltdown-spectre-android-updates/
I'm still searching for official info but I'm not surprised the Note 4 isn't getting patched. I'm more miffed my 2016 revision Tab S2 isn't getting patched. That sucks.
Click to expand...
Click to collapse
I saw the same page. Someone out there has to know how to patch a security update for us and other users of older phones. It's gotta be possible. I read that one user of an ASUS motherboard patched his own BIOS for the threat(s).
I was assured by a Samsung rep that the Note 4 would receive a security update, but I'm not sure I believe that it will.
Verizon Galaxy Note 4's have started receiving a security update!!!!
Within the past half-hour (currently 1/17/2018 at 10:45pm) I received a notification to install the update. Hopefully this update will address the KRACK, Meltdown, and Spectre vulnerabilities.
Dwillian said:
Verizon Galaxy Note 4's have started receiving a security update!!!!
Within the past half-hour (currently 1/17/2018 at 10:45pm) I received a notification to install the update. Hopefully this update will address the KRACK, Meltdown, and Spectre vulnerabilities.
Click to expand...
Click to collapse
Can I install this on a ROM or should I ask the ROM's author?
Sent from my SM-N910V using Tapatalk
Most likely the update is only for stock firmware, so you should check with your ROM author.
The update is confusing. After applying the update I looked in Settings, About Phone and the Security Patch level still shows as August 1, 2017 (suggesting that none of the security vulnerabilities like KRACK, Meltdown, or Spectre have been addressed). The Kernel version and SE for Android status now show December 6, 2017, so something has changed.
Under Settings, System updates showing that the last system update was a software update to N910VVRU2CQL1 and that it was applied today (Jan 17,2018). So far I haven't found any documentation for this update so it is totally unclear what has been changed or fixed.
Verizon just posted that
Software Version: MMB29M.N910VVRU2CQL1
Android® Security Patch Level: 2017-08-01, including Blueborne and Krack security patches
The current software update gives you the most up to date Android security patches on your device.
( See https://www.verizonwireless.com/supp...note-4-update/ )
Hopefully we will soon receive the Meltdown and Spectre security patches. Wouldn't it be nice if Verizon/Samsung would post an ETA for these kinds of critical security patches.?
January security patch is rolling out with KRACK security fixes.
https://mobilesupport.lenovo.com/us/en/Solution/MS126166
is that update for US unlocked version of the G5 Plus (XT1687)??
Broloff said:
is that update for US unlocked version of the G5 Plus (XT1687)??
Click to expand...
Click to collapse
Should be for all variants
RohitJainWorld said:
January security patch is coming with KRACK security fixes but not Oreo.
We may get oreo in April.
https://mobilesupport.lenovo.com/us/en/Solution/MS126166
Click to expand...
Click to collapse
I guess it would be up in Feb only
Well, the moto's that updated to oreo are running the jan 1st security patch... Guess if we receive it and it is not oreo we may get it by february or march.... I'm being optimistic and hope to receive it the first days of february
M1810 said:
Well, the moto's that updated to oreo are running the jan 1st security patch... Guess if we receive it and it is not oreo we may get it by february or march.... I'm being optimistic and hope to receive it the first days of february
Click to expand...
Click to collapse
When owning a midrange "motonovo" device, being optimistic and having hope is the best strong suit for waiting on updates ?
M1810 said:
Well, the moto's that updated to oreo are running the jan 1st security patch... Guess if we receive it and it is not oreo we may get it by february or march.... I'm being optimistic and hope to receive it the first days of february
Click to expand...
Click to collapse
I'm hoping feb 9th. My birthday lol. I've tried every ROM out there and they're all excellent, but I just can't deal with the camera. I need shutter speed and iso adjustments so pictures of things like the moon look like what we see rather than a random white dot. I haven't been able to find any ROM that does it better than a stock variant with Moto camera in professional mode, so I'm stuck on Nougat until Lenovotorola gets off their butts and gives us Oreo.
Just recieved today November patch, lol, XT1680 retar channel. Just Wondering why I was at compilation NPNS25.137-15-11 and now is NPN25.137-97.
neodarklink said:
Just recieved today November patch, lol, XT1680 retar channel. Just Wondering why I was at compilation NPNS25.137-15-11 and now is NPN25.137-97.
Click to expand...
Click to collapse
I guess they want all phones to be on same build when they push out Oreo and onwards.
rockhardy said:
I guess they want all phones to be on same build when they push out Oreo and onwards.
Click to expand...
Click to collapse
It looks like oreo is closer.. end of january or start of february probably.. unless lenovo screw up again
-------------
This security patch changelog was up since november, so there is no reason for us not to get oreo, i mean it is probably outdated.
Can anyone with XT1686 (Indian variant) post a screenshot of the build number of the latest January update?
Venomous Viper 119 said:
Can anyone with XT1686 (Indian variant) post a screenshot of the build number of the latest January update?
Click to expand...
Click to collapse
There is no January update, the last update had 1st November security patch and had the build number 137-92
psychopac said:
There is no January update, the last update had 1st November security patch and had the build number 137-92
Click to expand...
Click to collapse
ENHANCEMENTS
This update introduces changes including the following:
Android security: Includes the updates of Android security patches through January 1st, 2018.
Fix for KRACK vulnerability: includes fix to address the KRACK vulnerability issue, which affects Wi-Fi networks.
Click to expand...
Click to collapse
read the link at least
edit: oh i see you talk about indian variant. sorry
PumaPerez said:
read the link at least
edit: oh i see you talk about indian variant. sorry
Click to expand...
Click to collapse
I know that a January security patch is due tho but it won't be 137-92/93
I don't think the january patch will be released alone, it will come along with oreo mid-feb
M1810 said:
I don't think the january patch will be released alone, it will come along with oreo mid-feb
Click to expand...
Click to collapse
You might be right
Does anyone know why my g5 plus hasn't been updated in so long,
It says software channel retgb and I'm still on 1st august security patch, honestly this is making me want to go back to iPhone, that's getting on for 5 months out of date for basic security.
retgb here also, security is only an issue if you use phone unwisely, in locations wifi you cannot trust, apps installed from unknown sources or dodgy websites, if not doing any of the above you should be fine.
There is only so much security you can build into any OS, the rest is down to you.
Thisusernameisinuse said:
Does anyone know why my g5 plus hasn't been updated in so long,
It says software channel retgb and I'm still on 1st august security patch, honestly this is making me want to go back to iPhone, that's getting on for 5 months out of date for basic security.
Click to expand...
Click to collapse
Haven't you received the 1st November security patch yet? Everyone else seems to be on that patch
psychopac said:
Haven't you received the 1st November security patch yet? Everyone else seems to be on that patch
Click to expand...
Click to collapse
No, this is the last Motorola I will own, my partner's s8 has had about 6 updates in that time.
So I just got the Galaxy Tab S4 SM-T830...
Currently, it's sitting on Android Ver. 8.1.0
Build No. M1AJQ.T830XXU1ARH5
Android Security Patch June 1, 2018
It's asking me to update to the T830XXU2ARJ3 Build Number Oct. 1, 2018 Security Patch...
Do I take the update? I don't want to lock down the device by accepting anything that I shouldn't. I might want to root and install custom ROMs in the future, so that's why I'm asking first.
Thanks in advance!
greevedogg said:
So I just got the Galaxy Tab S4 SM-T830...
Currently, it's sitting on Android Ver. 8.1.0
Build No. M1AJQ.T830XXU1ARH5
Android Security Patch June 1, 2018
It's asking me to update to the T830XXU2ARJ3 Build Number Oct. 1, 2018 Security Patch...
Do I take the update? I don't want to lock down the device by accepting anything that I shouldn't. I might want to root and install custom ROMs in the future, so that's why I'm asking first.
Thanks in advance!
Click to expand...
Click to collapse
Afaik U2 bootloader triggers lockout.
dr460nf1r3 said:
Afaik U2 bootloader triggers lockout.
Click to expand...
Click to collapse
I have not rooted or installed TWRP. I did upgrade my SM-T835C to U2ARJ3 and I have "OEM Unlock" available in Developer mode. Again I am all official right now. (I have not decided if I want to break AirWatch with this tablet yet or not ) Now if there was a way to keep AirWatch Hub working then that would make want to root faster!
Can anyone confirm whether taking the update will prevent future flexibility with rooting, non stock ROMS etc? Also, can anyone shed any light on what updates/improvements/benefits the update includes (outside of security patch)? Any insight much appreciated!
Sorry to bump but still very curious! Been checking this thread for updates since I asked a while back. Any noteworthy improvements? Still haven't updated.
I didn't even think about the bootloader version before installing TWRP. I just installed it today on T830XXU2ARK4. After installing TWRP, trying to boot into android caused a bootloop until I installed magisk.
gothicVI has applied the android monthly security updates from google , for the last several months to all versions of LineageOS for the moto potter.
Thank you for keeping our phones up to date !
https://androidfilehost.com/?a=show&w=files&flid=272434
Nivead said:
gothicVI has applied the android monthly security updates from google , for the last several months to all versions of LineageOS for the moto potter.
Thank you for keeping our phones up to date !
https://androidfilehost.com/?a=show&w=files&flid=272434
Click to expand...
Click to collapse
I have updated the link in the official thread, thanks for providing the link.
Awesome! Thanks for the security updates.. Badly needed for my lineage 16 (android 9) .
I am avoiding android 10 till twrp can do proper restores etc..
thank you
Nivead said:
gothicVI has applied the android monthly security updates from google , for the last several months to all versions of LineageOS for the moto potter.
Thank you for keeping our phones up to date !
https://androidfilehost.com/?a=show&w=files&flid=272434
Click to expand...
Click to collapse
Can we expect security updates from dev till the end of 2020?
By the way big thanks to gothic for keeping potter updated and alive.
Aj_$tyle$ said:
Can we expect security updates from dev till the end of 2020?
By the way big thanks to gothic for keeping potter updated and alive.
Click to expand...
Click to collapse
Google puts out the updates, in general; every month or as needed. I have no communications with the developer GothicIV. I just check his web site and if the security updates are there, I download and apply to my phone.
GothicIV posted September 2020 updates yesterday (19th).
October 2020 security updates are available...
November 2020 security updates available.
December 2020 security updates are available
Hey there,
I have attempted to update to the 3 most recent security patches (Oct 25, Nov 7, Dec 13) for LineageOS 16.0 (potter) provided by gothicVI, but after successfully flashing them my phone bootloops back to TWRP 3.4.0.0 after trying to boot system for a few minutes.
I have logcat logs for each security patch boot attempt.
I am currently stuck on the Oct 9 security patch as it is the latest version that will boot on my phone.
Where I can get help with this?
gothicVI is awesome, so far Moto G5 Plus seems pretty much abandoned, pixel experience lags too much on my 2gb ram variant. Time to buy a new phone but for now gonna use this.
carlasan said:
I am avoiding android 10 till twrp can do proper restores etc..
thank you
Click to expand...
Click to collapse
Is that the only issue? I flashed crDroid 6.13 from the latest twrp with no problems so far. Any issues besides restore I should be aware of if I decide to move to another rom?