Quadrooter affected
- Thread starter CmDaRkShAdOw
- Start date
You are not infected, but affected. It is a big difference. Get a rom that is maintained, as opposed to abandoned....
Hmm..I'm using dstrikerz1 but sp001(the newest version is sp002, but I prefer that) update is planned..changing rom will help? I never met that virus, so I don't know what to do right now.
I don't think you fully understand: the only way to patch the vulnerabilities is to change the code and re-build the rom. No stock rom can be build from sources by anyone, except OEM, because stock roms are closed source, i.e., code is not available. They can only be moded: delete an app, change wallpaper etc... . So, no matter how many more releases of moded stock roms can appear, none of them will include any security patches after the last official release, which was about the end of last year....
Last edited:
I didn't understand because I told you that this is my first time with this. Ehh so I must accept this... Thank for reply.
The problem here is that most of these vulnerabilities (with the exception of the first, which is in the kernel) are inside proprietary files from qualcomm. So binaries which we don't have access to the source code to. Chances of this ever being fixed on our phones are pretty slim to none. The only chance might be the release of patched binaries for MM AOSP, which could then be used in custom (non-stock) ROMs.
Also we all just needs to "Keep calm and carry on".
We are also all "affected" to be run down by a car in the street, but we some how don't get run down every day.
How: we don't walk out on the street in front of a car. We carefully look both sides first.
Just as we don't download and install unknown apps from unknown sources
We are also all "affected" to be run down by a car in the street, but we some how don't get run down every day.
How: we don't walk out on the street in front of a car. We carefully look both sides first.
Just as we don't download and install unknown apps from unknown sources
This is A gpu error, only you need is to check new apks, and be sure that are safe, before installing.
Nothing bad.
Sent from my XT687 using xda premium
---------- Post added at 01:50 PM ---------- Previous post was at 01:49 PM ----------
[QuadRooter?]
http://forum.xda-developers.com/showthread.php?t=3435492
[QuadRooter?]
Sent from my XT687 using xda premium
---------- Post added at 01:51 PM ---------- Previous post was at 01:50 PM ----------
Qualcomm Vulnerability - Possible Root?
http://forum.xda-developers.com/showthread.php?t=3435425
Qualcomm Vulnerability - Possible Root?
Sent from my XT687 using xda premium
---------- Post added at 01:54 PM ---------- Previous post was at 01:51 PM ----------
They NEVER will update our roms, all they are piggest dollar bill, saying to buy a new CVE BUG ERRORED DEVICE (AFTER ONE YEAR EXACTLY)
Sent from my XT687 using xda premium
Nothing bad.
Sent from my XT687 using xda premium
---------- Post added at 01:50 PM ---------- Previous post was at 01:49 PM ----------
[QuadRooter?]
http://forum.xda-developers.com/showthread.php?t=3435492
[QuadRooter?]
Sent from my XT687 using xda premium
---------- Post added at 01:51 PM ---------- Previous post was at 01:50 PM ----------
Qualcomm Vulnerability - Possible Root?
http://forum.xda-developers.com/showthread.php?t=3435425
Qualcomm Vulnerability - Possible Root?
Sent from my XT687 using xda premium
---------- Post added at 01:54 PM ---------- Previous post was at 01:51 PM ----------
They NEVER will update our roms, all they are piggest dollar bill, saying to buy a new CVE BUG ERRORED DEVICE (AFTER ONE YEAR EXACTLY)
Sent from my XT687 using xda premium
Not true. They are all open source. In fact most Qualcomm's fixes are open source. Just because Google is lazy to reference sources and instead chooses to publish binaries, doesn't mean they are not open source. You just have to get them from Code Aurora directly.
Here they are:
CVE-2016-2059: https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=9e8bdd63f7011dff5523ea435433834b3702398d
CVE-2016-2503 and 4: https://www.codeaurora.org/use-after-free-due-race-conditions-kgsl-module-cve-2016-2504-cve-2016-2503
CVE-2016-5340: https://www.codeaurora.org/invalid-path-check-ashmem-memory-file-cve-2016-5340
Last edited:
Yes, I was mis-informed by an article I read yesterday.
I found those patches last night and made a new build. Funnily though, CVE-2016-5340 is still shown as unfixed in the program, but other people are having that problem as well it seems. So for now I'm blaming the App
I found those patches last night and made a new build. Funnily though, CVE-2016-5340 is still shown as unfixed in the program, but other people are having that problem as well it seems. So for now I'm blaming the App
This is why i suspect if this app haves a png inside , for when we open, display "device affected" by a fake scanner
Sent from my XT687 using xda premium
Sent from my XT687 using xda premium
The app and the whole Checkpoint's blog are nothing more than a deceitful commercial pitch for business customers. I don't think there is even a way to know whether vulnerabilities are fixed on a live device. It is all crap...Yes, I was mis-informed by an article I read yesterday.
I found those patches last night and made a new build. Funnily though, CVE-2016-5340 is still shown as unfixed in the program, but other people are having that problem as well it seems. So for now I'm blaming the App
---------- Post added at 09:36 AM ---------- Previous post was at 09:31 AM ----------
Could you post the app please. We can expose Checkpoint if the app is fake....
You find this as Quadroot Scanner in goglebley store or 9apps store
If you read the checkpoint site, they explicitly are promoting goglebley store with this invalid argument :
"OnLy dOwnLoAD aPps fRoM goGleBlEy sToRe"
Lamentable!
:sly:
Sent from my XT687 using xda premium
If you read the checkpoint site, they explicitly are promoting goglebley store with this invalid argument :
"OnLy dOwnLoAD aPps fRoM goGleBlEy sToRe"
Lamentable!
:sly:
Sent from my XT687 using xda premium
Just to be 100% sure: if I use a stock ROM (as we know there will be no updates...) the only way to protect myself is to:
As a second question, I know that I can be hit by a car at any time but am I safe on a stock ROM? It is fast and works fine for me. Btw I would need some OS where I can download my company mails and things like that which need a "very secure environment"... and also a very stable one, as I know current Marshmallow ROMs for Z1 are unstable.
- stop using it and use some custom ROM
- use some apk scanner (e.g. AVG), do not install from unknown sources, do not install suspicious apps (and "that's all")
As a second question, I know that I can be hit by a car at any time but am I safe on a stock ROM? It is fast and works fine for me. Btw I would need some OS where I can download my company mails and things like that which need a "very secure environment"... and also a very stable one, as I know current Marshmallow ROMs for Z1 are unstable.
You don't need follow google craps, you may stay installing unknown source apks, by scanning after...
Sent from my XT687 using xda premium
Sent from my XT687 using xda premium
Our Apps
Get our official app!
The best way to access XDA on your phone
Nav Gestures
Add swipe gestures to any Android
One Handed Mode
Eases uses one hand with your phone