n3tt40nk3l
Neues Mitglied
- 0
Nettes Forum habt Ihr hier
Hab ein paar infos zu CBR43 gefunden.....
Aus dem Heise-Forum:
25. Mai 2009 07:26
Contents of the Android security update CRB43
esizkur (1 Beitrag seit 25.05.09)
On May 22nd, I first received a notification about a new security
update being available for my Cupcake-running G1. I didn't have time
to look into this until now, below you find my preliminary analysis.
For some reason Google does not give out any information on their
Android security updates, which really sucks.
You can find the differential update between CRB17 (the original
Cupcake build that was distributed OTA some weeks ago) and CRB43 (the
buld that is distributed now, with the security update) here:
http://android.clients.google.com/updates/signed-kila_eu-CRB43-from-C
RB17.1638e1b4.zip
Unzipping this file, you find a lot of smaller and larger .p files,
these are binary patch files generated by bsdiff.c.
This is the full list:
./app/AlarmClock.apk.p
./app/AlarmClock.odex.p
./app/Browser.apk.p
./app/Browser.odex.p
./app/BugReport.apk.p
./app/BugReport.odex.p
./app/Calculator.apk.p
./app/Calculator.odex.p
./app/Calendar.apk.p
./app/Calendar.odex.p
./app/CalendarProvider.apk.p
./app/CalendarProvider.odex.p
./app/Camera.apk.p
./app/Camera.odex.p
./app/checkin.apk.p
./app/checkin.odex.p
./app/Contacts.apk.p
./app/Contacts.odex.p
./app/DownloadProvider.apk.p
./app/DownloadProvider.odex.p
./app/DrmProvider.apk.p
./app/DrmProvider.odex.p
./app/Email.apk.p
./app/Email.odex.p
./app/FieldTest.apk.p
./app/Gmail.apk.p
./app/Gmail.odex.p
./app/GmailProvider.apk.p
./app/GmailProvider.odex.p
./app/GoogleApps.apk.p
./app/GoogleApps.odex.p
./app/GoogleContactsProvider.apk.p
./app/GoogleContactsProvider.odex.p
./app/GooglePartnerSetup.apk.p
./app/GooglePartnerSetup.odex.p
./app/GoogleSearch.apk.p
./app/GoogleSearch.odex.p
./app/GoogleSettingsProvider.apk.p
./app/GoogleSettingsProvider.odex.p
./app/GoogleSubscribedFeedsProvider.apk.p
./app/GoogleSubscribedFeedsProvider.odex.p
./app/gtalkservice.apk.p
./app/gtalkservice.odex.p
./app/HTMLViewer.apk.p
./app/HTMLViewer.odex.p
./app/ImProvider.apk.p
./app/ImProvider.odex.p
./app/LatinIME.apk.p
./app/LatinIME.odex.p
./app/Launcher.apk.p
./app/Launcher.odex.p
./app/Maps.apk.p
./app/MediaProvider.apk.p
./app/MediaProvider.odex.p
./app/MediaUploader.apk.p
./app/Mms.apk.p
./app/Mms.odex.p
./app/Music.apk.p
./app/Music.odex.p
./app/NetworkLocation.apk.p
./app/NetworkLocation.odex.p
./app/PackageInstaller.apk.p
./app/PackageInstaller.odex.p
./app/Phone.apk.p
./app/Phone.odex.p
./app/Settings.apk.p
./app/Settings.odex.p
./app/SettingsProvider.apk.p
./app/SettingsProvider.odex.p
./app/SetupWizard.apk.p
./app/SetupWizard.odex.p
./app/SoundRecorder.apk.p
./app/SoundRecorder.odex.p
./app/Stk.apk.p
./app/Stk.odex.p
./app/Street.apk.p
./app/Street.odex.p
./app/SystemUpdater.apk.p
./app/SystemUpdater.odex.p
./app/Talk.apk.p
./app/Talk.odex.p
./app/TelephonyProvider.apk.p
./app/TelephonyProvider.odex.p
./app/UserDictionaryProvider.apk.p
./app/UserDictionaryProvider.odex.p
./app/Vending.apk.p
./app/Vending.odex.p
./app/Webnwalk.apk.p
./app/Webnwalk.odex.p
./app/YouTube.apk.p
./app/YouTube.odex.p
./bin/debuggerd.p
./build.prop.p
./etc/contributors.html.p
./etc/NOTICE.html.gz.p
./etc/security/otacerts.zip.p
./framework/am.jar.p
./framework/am.odex.p
./framework/android.awt.jar.p
./framework/android.awt.odex.p
./framework/android.policy.jar.p
./framework/android.policy.odex.p
./framework/android.test.runner.jar.p
./framework/android.test.runner.odex.p
./framework/com.android.im.plugin.jar.p
./framework/com.android.im.plugin.odex.p
./framework/com.google.android.gtalkservice.jar.p
./framework/com.google.android.gtalkservice.odex.p
./framework/com.google.android.maps.jar.p
./framework/com.google.android.maps.odex.p
./framework/core.jar.p
./framework/core.odex.p
./framework/ext.jar.p
./framework/ext.odex.p
./framework/framework-res.apk.p
./framework/framework-tests.jar.p
./framework/framework-tests.odex.p
./framework/framework.jar.p
./framework/framework.odex.p
./framework/ime.jar.p
./framework/ime.odex.p
./framework/input.jar.p
./framework/input.odex.p
./framework/monkey.jar.p
./framework/monkey.odex.p
./framework/pm.jar.p
./framework/pm.odex.p
./framework/services.jar.p
./framework/services.odex.p
./framework/svc.jar.p
./framework/svc.odex.p
./lib/libicudata.so.p
./lib/modules/wlan.ko.p
So we see that this is not just a tiny little update patching one or
two issues, but rather a substantial security update that would
warrant a 5 page long document from Google describing the fixes they
made. The things that caught my eye were: Why the hell are they
patching the list of OTA certificates? This patch is a mere 160 bytes
big (bzip2 compressed), so I'm doubtful they can store even a full
X.509 certificate in there. The second: they patched their 802.11
stack. Has there been a remote attack vector against the one
distributed with the original Cupcake?
Und hier noch ein Link um was für eine Lücke es ging:
oCERT.org - oCERT Advisories
Hab ein paar infos zu CBR43 gefunden.....
Aus dem Heise-Forum:
25. Mai 2009 07:26
Contents of the Android security update CRB43
esizkur (1 Beitrag seit 25.05.09)
On May 22nd, I first received a notification about a new security
update being available for my Cupcake-running G1. I didn't have time
to look into this until now, below you find my preliminary analysis.
For some reason Google does not give out any information on their
Android security updates, which really sucks.
You can find the differential update between CRB17 (the original
Cupcake build that was distributed OTA some weeks ago) and CRB43 (the
buld that is distributed now, with the security update) here:
http://android.clients.google.com/updates/signed-kila_eu-CRB43-from-C
RB17.1638e1b4.zip
Unzipping this file, you find a lot of smaller and larger .p files,
these are binary patch files generated by bsdiff.c.
This is the full list:
./app/AlarmClock.apk.p
./app/AlarmClock.odex.p
./app/Browser.apk.p
./app/Browser.odex.p
./app/BugReport.apk.p
./app/BugReport.odex.p
./app/Calculator.apk.p
./app/Calculator.odex.p
./app/Calendar.apk.p
./app/Calendar.odex.p
./app/CalendarProvider.apk.p
./app/CalendarProvider.odex.p
./app/Camera.apk.p
./app/Camera.odex.p
./app/checkin.apk.p
./app/checkin.odex.p
./app/Contacts.apk.p
./app/Contacts.odex.p
./app/DownloadProvider.apk.p
./app/DownloadProvider.odex.p
./app/DrmProvider.apk.p
./app/DrmProvider.odex.p
./app/Email.apk.p
./app/Email.odex.p
./app/FieldTest.apk.p
./app/Gmail.apk.p
./app/Gmail.odex.p
./app/GmailProvider.apk.p
./app/GmailProvider.odex.p
./app/GoogleApps.apk.p
./app/GoogleApps.odex.p
./app/GoogleContactsProvider.apk.p
./app/GoogleContactsProvider.odex.p
./app/GooglePartnerSetup.apk.p
./app/GooglePartnerSetup.odex.p
./app/GoogleSearch.apk.p
./app/GoogleSearch.odex.p
./app/GoogleSettingsProvider.apk.p
./app/GoogleSettingsProvider.odex.p
./app/GoogleSubscribedFeedsProvider.apk.p
./app/GoogleSubscribedFeedsProvider.odex.p
./app/gtalkservice.apk.p
./app/gtalkservice.odex.p
./app/HTMLViewer.apk.p
./app/HTMLViewer.odex.p
./app/ImProvider.apk.p
./app/ImProvider.odex.p
./app/LatinIME.apk.p
./app/LatinIME.odex.p
./app/Launcher.apk.p
./app/Launcher.odex.p
./app/Maps.apk.p
./app/MediaProvider.apk.p
./app/MediaProvider.odex.p
./app/MediaUploader.apk.p
./app/Mms.apk.p
./app/Mms.odex.p
./app/Music.apk.p
./app/Music.odex.p
./app/NetworkLocation.apk.p
./app/NetworkLocation.odex.p
./app/PackageInstaller.apk.p
./app/PackageInstaller.odex.p
./app/Phone.apk.p
./app/Phone.odex.p
./app/Settings.apk.p
./app/Settings.odex.p
./app/SettingsProvider.apk.p
./app/SettingsProvider.odex.p
./app/SetupWizard.apk.p
./app/SetupWizard.odex.p
./app/SoundRecorder.apk.p
./app/SoundRecorder.odex.p
./app/Stk.apk.p
./app/Stk.odex.p
./app/Street.apk.p
./app/Street.odex.p
./app/SystemUpdater.apk.p
./app/SystemUpdater.odex.p
./app/Talk.apk.p
./app/Talk.odex.p
./app/TelephonyProvider.apk.p
./app/TelephonyProvider.odex.p
./app/UserDictionaryProvider.apk.p
./app/UserDictionaryProvider.odex.p
./app/Vending.apk.p
./app/Vending.odex.p
./app/Webnwalk.apk.p
./app/Webnwalk.odex.p
./app/YouTube.apk.p
./app/YouTube.odex.p
./bin/debuggerd.p
./build.prop.p
./etc/contributors.html.p
./etc/NOTICE.html.gz.p
./etc/security/otacerts.zip.p
./framework/am.jar.p
./framework/am.odex.p
./framework/android.awt.jar.p
./framework/android.awt.odex.p
./framework/android.policy.jar.p
./framework/android.policy.odex.p
./framework/android.test.runner.jar.p
./framework/android.test.runner.odex.p
./framework/com.android.im.plugin.jar.p
./framework/com.android.im.plugin.odex.p
./framework/com.google.android.gtalkservice.jar.p
./framework/com.google.android.gtalkservice.odex.p
./framework/com.google.android.maps.jar.p
./framework/com.google.android.maps.odex.p
./framework/core.jar.p
./framework/core.odex.p
./framework/ext.jar.p
./framework/ext.odex.p
./framework/framework-res.apk.p
./framework/framework-tests.jar.p
./framework/framework-tests.odex.p
./framework/framework.jar.p
./framework/framework.odex.p
./framework/ime.jar.p
./framework/ime.odex.p
./framework/input.jar.p
./framework/input.odex.p
./framework/monkey.jar.p
./framework/monkey.odex.p
./framework/pm.jar.p
./framework/pm.odex.p
./framework/services.jar.p
./framework/services.odex.p
./framework/svc.jar.p
./framework/svc.odex.p
./lib/libicudata.so.p
./lib/modules/wlan.ko.p
So we see that this is not just a tiny little update patching one or
two issues, but rather a substantial security update that would
warrant a 5 page long document from Google describing the fixes they
made. The things that caught my eye were: Why the hell are they
patching the list of OTA certificates? This patch is a mere 160 bytes
big (bzip2 compressed), so I'm doubtful they can store even a full
X.509 certificate in there. The second: they patched their 802.11
stack. Has there been a remote attack vector against the one
distributed with the original Cupcake?
Und hier noch ein Link um was für eine Lücke es ging:
oCERT.org - oCERT Advisories