We got a KRACK update so idk, maybe we'll get a patch for KNOB?
KNOB is a Bluetooth vulnerability, update has been released for KEY2 already afaik.
Printable View
We got a KRACK update so idk, maybe we'll get a patch for KNOB?
KNOB is a Bluetooth vulnerability, update has been released for KEY2 already afaik.
doubtful but they are not EOL til end of year so will see
According to the researchers:
Since the last released update (10.3.3.3216) was built February 2018, it's definitely unfixed in current software. Even if the last ever spotted release (10.3.3.3333 from October 2018) comes out, it's still uncertain if whatever firmware fixes Qualcomm/Broadcom/Texas Instruments/whoever developed made it into BB10 that quickly, if the KRACK fix build came out six months after the public advisory. From the CVE, BlackBerry was notified about this in June with no response since then. Presumably, EOL ticking closer by the second and the build server being dormant since October means no response is necessary.The KNOB attack is possible due to flaws in the Bluetooth specification. As such, any standard-compliant Bluetooth device can be expected to be vulnerable. We conducted KNOB attacks on more than 17 unique Bluetooth chips (by attacking 24 different devices). At the time of writing, we were able to test chips from Broadcom, Qualcomm, Apple, Intel, and Chicony manufacturers. All devices that we tested were vulnerable to the KNOB attack.
After we disclosed our attack to industry in late 2018, some vendors might have implemented workarounds for the vulnerability on their devices. So the short answer is: if your device was not updated after late 2018, it is likely vulnerable. Devices updated afterwards might be fixed.
So their press release meant ________ ?