[ale] Android security bug

Alex Carver agcarver+ale at acarver.net
Thu Jul 11 15:09:27 EDT 2013


Ron,

You're long out of warranty already anyway so go for root and 
Cyanogenmod.  You'll probably even get a little better performance out 
of the device. :)  And yes, Google Play works on Cyanogenmod.

On 7/11/2013 11:38, James Taylor wrote:
>>From the lastest SANS @Risk newsletter...
>
> "TOP VULNERABILITY THIS WEEK: A bug that spans nearly every known version
> of Android was announced last week, which allows for arbitrary
> modification of APK contents without compromising its digital signature.
> Public proof-of-concept already exists, and while rooted users with
> Cyanogenmod are already patched, users of mainstream, carrier-provided
> Android phones may be waiting for months before patches appear. "
>
> I'd suggest rooted phones with well supported opensource roms are going to give you  a lot better security than out of date vendor roms.
>
> -jt
>
>
> James Taylor
> 678-697-9420
> james.taylor at eastcobbgroup.com
>
>
>
>>>> "Ron Frazier (ALE)" <atllinuxenthinfo at techstarship.com> 7/11/2013   02:08 PM >>>
>
> So, JD, or anyone, what should I do now?  Has Acer released an update?  Are any of my existing apps likely to be affected in the future?  Is Cyanogenmod affected?  Should I go to that?  Can I still get Google Apps including Play if I do?  What?  What?
>
> Sincerely,
>
> Ron
>
>
>
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> http://mail.ale.org/mailman/listinfo/ale
> See JOBS, ANNOUNCE and SCHOOLS lists at
> http://mail.ale.org/mailman/listinfo
>
>



More information about the Ale mailing list