UBports Robot Logo UBports Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Groups
    • Search
    • Register
    • Login

    google has closed several security gaps in the android kernel. Is ubuntu touch also affected?

    Scheduled Pinned Locked Moved
    20.04 Focal Fossa
    2
    2
    169
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      Charly
      last edited by

      Hello the android kernel is currently affected by some new security vulnerabilities that are now being closed. other security vulnerabilities are being closed in android 12 , 13 and 14.

      More infos here:

      https://thehackernews.com/2024/08/google-patches-new-android-kernel.html

      My volla x23 is also based on halium 12.

      Is ubuntu touch also affected?
      What could a solution look like?

      Greetings
      Charly

      UT 20.04 on Volla X23

      AppLeeA 1 Reply Last reply Reply Quote 0
      • AppLeeA
        AppLee @Charly
        last edited by

        Hi @Charly

        As you read in the article, no detail on how an attacker can exploit this CVE has been shared.
        So it's hard to tell whether Ubuntu Touch is vulnerable or not.
        If it requires physical access to the device we're already more vulnerable due to the bootloader.

        Also if I understand correctly, the best project to ask questions about the kernel for halium devices is the halium project.
        Once the kernel is fixed there the porter can merge it to the port.
        Or, the porter can implement the fix, but (again IIUC) it's a very device specific issue.

        I would love to come up with a way to track CVE and analyze them for each device but I didn't find a good way to do it efficiently.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post