04-16-17 10:41 AM
31 12
tools
  1. tipplex's Avatar
    04-14-17 01:32 PM
  2. kvndoom's Avatar
    Whatever helps you sleep at night, I guess.
    jmr1015 likes this.
    04-14-17 01:50 PM
  3. DrBoomBotz's Avatar
    Already received the patch.
    jmr1015 and southlander like this.
    04-14-17 02:00 PM
  4. Dunt Dunt Dunt's Avatar
    There is a chance of rain tomorrow....
    04-14-17 02:10 PM
  5. thurask's Avatar
    04-14-17 02:15 PM
  6. Ment's Avatar
    The Register is like the DailyMail of tech. Clickbait Kingdom.

    Big Linux bug, low security concerns | ZDNet

    As Alan Cox, senior Linux kernel developer and one of udp.c's programmers, remarked: "Not sure it's as exploitable as claimed." Linux security researcher Dan Rosenberg tweeted: "I have reviewed the relevant code and I mostly understand it, but I'm missing the security ramifications." And, Hagen Paul Pfeifer, a senior development expert for Network Protocol Software, put it more bluntly, "Fake news, fake bugs."

    The bug also exists in Android and it was only fixed in Google April 2017's patch release. That said, I know of no major Android applications that use MSG_PEEK. It is, as mentioned on Ycomb, a very rarely used routine on any platform.

    Last, but not least, it's common firewall practice to block UDP traffic.

    This security hole appears to be much ado about nothing. It sounds bad, but the closer you look at it, the harder it is to find even an edge case where it might be exploited.

    That said, you should always patch your systems and keep your eyes open for vulnerability news. Just because this udp.c bug turned out to be a soggy firework, doesn't mean that the next one won't explode on you.
    Dunt Dunt Dunt likes this.
    04-14-17 02:20 PM
  7. tipplex's Avatar
    We know you have to patch it if there is a patch... it keeps raining with android. Android fits in the same row as Adobe products.

    Posted via CB10
    04-14-17 02:50 PM
  8. conite's Avatar
    We know you have to patch it if there is a patch... it keeps raining with android. Android fits in the same row as Adobe products.

    Posted via CB10
    Android has all the security you would ever need. Good passwords, sticking with Play Store, and safe browsing cover 99.9% of all threats.
    04-14-17 03:09 PM
  9. Praganad's Avatar
    I don't need luck, luck needs me! =)
    04-14-17 03:17 PM
  10. 4_life's Avatar
    I'm lucky all this time, I've got zero breach even without patches.
    04-15-17 01:11 AM
  11. southlander's Avatar
    Sure theoretically. IF an exploit could be properly built to run well. IF it were able to be placed somewhere to hit a decent number of users. IF the changes it makes are such that Googles autoscanning of installed apps can't see it. If if if.

    Net effect is likely nothing.

    I have plenty of totally tech ignorant friends using Android and none of them have had any malware such as this hit them.

    Not totally dismissing the threat. For sure in proper hands and against an specific target it could be used for all kinds of things.
    Laura Knotek likes this.
    04-15-17 02:35 AM
  12. peednus's Avatar
    Thanks.

    Posted via Commodore 64
    04-15-17 03:05 AM
  13. Tsepz_GP's Avatar
    Thanks for another useless topic about something we do not have to worry about.

    Same as every other "security threat" announcement.... Actually this one is the most anticlimactic I have ever seen. Congratulations!
    04-15-17 06:04 AM
  14. Tsepz_GP's Avatar
    Sure theoretically. IF an exploit could be properly built to run well. IF it were able to be placed somewhere to hit a decent number of users. IF the changes it makes are such that Googles autoscanning of installed apps can't see it. If if if.

    Net effect is likely nothing.

    I have plenty of totally tech ignorant friends using Android and none of them have had any malware such as this hit them.

    Not totally dismissing the threat. For sure in proper hands and against an specific target it could be used for all kinds of things.
    Indeed.

    You quite literally have to be looking for malware to get it on your Android, and even then, you have to jump through the many warnings advising you not to install that app to eventually get it on your phone. Lol.

    It is entertaining reading thread after thread though of people trying to paint a picture of doom and gloom on Android with these sort of topics.

    There are still millions of people using old Androids from 4-5years ago on Android 4.0 and even they have to try find this malware that us supposed to be infecting our phones and bringing us to our knees. 😂
    04-15-17 06:12 AM
  15. Bla1ze's Avatar
    Thanks. Clearly won't need it though..

    So, in short, yes, there is a remote kernel-level code execution vulnerability in Linux, which sounds like the worst of the very worst, but it is pretty much patched by now – and it appears to be tricky if not impossible to realistically exploit.
    Maybe you never actually read the article lol.
    04-15-17 06:23 AM
  16. stlabrat's Avatar
    agree with all, patched is nolonger an issue, even the fault is most likely not explored. however, it is striking to see the software chaps got programmed way back in early Microsoft days that Bug, is part of software,everybody have to tolerated, routinely patched... (saw once at way back of bug list at some software, scary long and complicated... if legacy program is out there... re-use suppose be a good thing, but with bug, major pain... ). I don't think customer cut a slack for hardware like this... (just look the out cry for apple sent out a ring for the grip gate... those chaps almost take two bites out the apple instead of one).
    04-15-17 07:47 AM
  17. anon(9607753)'s Avatar
    Indeed.

    You quite literally have to be looking for malware to get it on your Android, and even then, you have to jump through the many warnings advising you not to install that app to eventually get it on your phone. Lol.

    It is entertaining reading thread after thread though of people trying to paint a picture of doom and gloom on Android with these sort of topics.

    There are still millions of people using old Androids from 4-5years ago on Android 4.0 and even they have to try find this malware that us supposed to be infecting our phones and bringing us to our knees. 😂
    Keep laughing. The most effective 'malware' is undetectable and willingly installed under whatever pretext gets this accomplished.
    04-15-17 11:03 AM
  18. southlander's Avatar
    Indeed.

    You quite literally have to be looking for malware to get it on your Android, and even then, you have to jump through the many warnings advising you not to install that app to eventually get it on your phone. Lol.

    It is entertaining reading thread after thread though of people trying to paint a picture of doom and gloom on Android with these sort of topics.

    There are still millions of people using old Androids from 4-5years ago on Android 4.0 and even they have to try find this malware that us supposed to be infecting our phones and bringing us to our knees.
    Well for sure there are morons with remote management of their home IoT devices/routers, etc. enabled with weak passwords set.

    You just can't help those types. No matter what tech they use.

    IT security is like real world security. Some percentage of people leave their cars unlocked and iPhone on the passenger's seat as they run into the grocery store, and thus can not be helped period.
    Laura Knotek and Tsepz_GP like this.
    04-15-17 01:35 PM
  19. Tsepz_GP's Avatar
    Keep laughing. The most effective 'malware' is undetectable and willingly installed under whatever pretext gets this accomplished.
    I will keep laughing, until the day I am actually shown something that can literally get itself into my phone and cause real damage, instead of these countless malware reports that talk about malware that I'd have to hunt for to get into my phone.
    04-15-17 01:48 PM
  20. anon(9607753)'s Avatar
    I will keep laughing, until the day I am actually shown something that can literally get itself into my phone and cause real damage, instead of these countless malware reports that talk about malware that I'd have to hunt for to get into my phone.
    Yeah good point. Google are a bunch of idiots for working on these stupid security patches. What a waste of time. Lol.
    04-15-17 06:35 PM
  21. Tsepz_GP's Avatar
    Yeah good point. Google are a bunch of idiots for working on these stupid security patches. What a waste of time. Lol.
    Oh dear, no, the idiots are the ones trying to scare Android users with malware that requires jumping through hoops to get.
    04-15-17 06:39 PM
  22. Emaderton3's Avatar
    If malicious malware was rampant and robbing people of their money and identity, it would be all over the news and tech blogs. Most of these threats are not worrisome.

    I think it is funny since many trashing Android probably have a Windows computer at home. But that isn't a problem???

    Posted via CB10
    jmr1015 likes this.
    04-15-17 06:43 PM
  23. FF22's Avatar
    There is a chance of rain tomorrow....
    Nothing new, I'm in Seattle!
    04-15-17 09:03 PM
  24. johnny_bravo72's Avatar
    BB10 fanboys at their finest... in sourgraping!
    cribble2k likes this.
    04-15-17 09:34 PM
  25. Yargai's Avatar
    There is a chance of rain tomorrow....
    It's raining in UB now.
    Attached Thumbnails Goodluck with your android-34662.jpg  
    04-15-17 09:49 PM
31 12

Similar Threads

  1. Most Secure Android Phone: Google Pixel?
    By niklow in forum General BlackBerry Discussion
    Replies: 55
    Last Post: 04-18-17, 08:32 AM
  2. Replies: 1
    Last Post: 04-15-17, 07:47 PM
  3. Replies: 2
    Last Post: 04-14-17, 06:10 PM
  4. BB and Android and TMobile's 600 megahertz band.
    By EndRacism in forum General BlackBerry Discussion
    Replies: 3
    Last Post: 04-14-17, 10:34 AM
  5. Crackberry will die with bb10
    By milot tafili in forum BlackBerry 10 OS
    Replies: 6
    Last Post: 04-14-17, 07:12 AM
LINK TO POST COPIED TO CLIPBOARD