Rocksolid Light

Welcome to novaBBS (click a section below)

mail  files  register  newsreader  groups  login

Message-ID:  

No amount of careful planning will ever replace dumb luck.


computers / comp.mobile.android / March 2023 security update fixes 18 Samsung/Pixel/Vivo Exynos modem flaws

SubjectAuthor
o March 2023 security update fixes 18 Samsung/Pixel/Vivo Exynos modem flawsNewsKrawler

1
March 2023 security update fixes 18 Samsung/Pixel/Vivo Exynos modem flaws

<tv2cjn$90l0$1@paganini.bofh.team>

 copy mid

https://www.novabbs.com/computers/article-flat.php?id=38651&group=comp.mobile.android#38651

 copy link   Newsgroups: comp.mobile.android
Path: i2pn2.org!i2pn.org!paganini.bofh.team!not-for-mail
From: newskr...@krawl.org (NewsKrawler)
Newsgroups: comp.mobile.android
Subject: March 2023 security update fixes 18 Samsung/Pixel/Vivo Exynos modem flaws
Date: Fri, 17 Mar 2023 18:47:20 -0000 (UTC)
Organization: To protect and to server
Message-ID: <tv2cjn$90l0$1@paganini.bofh.team>
Injection-Date: Fri, 17 Mar 2023 18:47:20 -0000 (UTC)
Injection-Info: paganini.bofh.team; logging-data="295584"; posting-host="nDb7tZ7UQVYri04syWnKjQ.user.paganini.bofh.team"; mail-complaints-to="usenet@bofh.team"; posting-account="9dIQLXBM7WM9KzA+yjdR4A";
Cancel-Lock: sha256:yWqrdRrs0RfZcPsC5Q24FMmNV6TolHbELZl++gJq6Ic=
X-Notice: Filtered by postfilter v. 0.9.3
 by: NewsKrawler - Fri, 17 Mar 2023 18:47 UTC

Hackers can take control of some phones with just your phone number.

If you don't have the March 2023 security update, you should probably
disable Wi-Fi Calling and VoLTE.

Google's Project Zero, its bug-hunting team, has identified eighteen
security vulnerabilities that affect Exynos modems, and combining them
can give an attacker full control over your smartphone without you even
knowing.

The vulnerabilities were discovered in late 2022 and early 2023, and four
of the eighteen vulnerabilities are deemed to be the most critical as they
enable remote code execution with just the victim's phone number.
Only one of the most serious exploits has a publicly assigned Common
Vulnerabilities and Exposures (CVE) number, with Google withholding a
number of CVEs associated with this vulnerability in a rare exception to
normal bug disclosure protocol.

The following devices are affected, according to Google's Project Zero.
Samsung S22, M33, M13, M12, A71, A53, A33, A21s, A13, A12 and A04 series;
Vivo S16, S15, S6, X70, X60 and X30 series;
The Pixel 6 and Pixel 7 series of devices from Google;
And any vehicles that use the Exynos Auto T5123 chipset.

This bug has been fixed in the March 2023 security update.
The Pixel 7 series already has this update.
However, the Pixel 6 series does not have it yet.

Google says users on unpatched devices should disable VoLTE
and they should disable Wi-Fi Calling.

Tim Willis, the head of Project Zero, said that "with limited additional
research and development, we believe that skilled attackers would be able
to quickly create an operational exploit to compromise affected devices
silently and remotely." In other words, a user could have their device
compromised and potentially not even know about it, and it seems like it
might be pretty easy for some attackers to find and exploit as well.

As for the major exploit that we do have information on, CVE-2023-24033,
its description simply says that the affected baseband modem chipsets "do
not properly check format types specified by the Session Description
Protocol (SDP) module, which can lead to a denial of service." A denial of
service in this context typically means that an attacker can remotely lock
your phone up and prevent you from using it, though no additional details
are given.

The other fourteen vulnerabilities (CVE-2023-26072, CVE-2023-26073,
CVE-2023-26074, CVE-2023-26075, CVE-2023-26076, and nine others awaiting
CVEs) aren't as critical but still carry risk to the end user. For
successful exploitation, they require "either a malicious mobile network
operator or an attacker with local access to the device."

For users who are waiting on an update and are using an affected device, be
sure to disable VoLTE and Wi-Fi Calling for now.
If you have the March 2023 security update available but haven't updated
yet, it might be time to do so.

Source: Google Project Zero

1
server_pubkey.txt

rocksolid light 0.9.7
clearnet tor