Hey guys, The Internet is abuzzing upon learning that there's a major security flaw in the kernel source for the Samsung Exynos 4 processors. All devices that use the Exynos 4 processor are affected (incl. all International Galaxy S II, International Galaxy S III, Galaxy Note I, Galaxy Note II, Galaxy Note 10.1 and etc.) The kernel allows full read/write access to a device called /dev/exynos-mem which according to the person who found the exploit, is basically like the standard Linux /dev/mem block device but allows everyone to read/write to it. This means that it will allow any application to read and write into memory, this also means that any software can dump the system's memory. All in all, any and all software running on the device can essentially root the device and run as root without notifying the user. It is recommended to follow best practices by NOT randomly downloading software unless you absolutely trust it or you can inadvertently compromise your own device. Luckily, Exynos 3 and 5 devices are not affected by this bug (devices like the Nexus S, Galaxy S and the Nexus 10 are not affected). More information: http://www.androidcentral.com/samsung-exynos-kernel-exploit-what-you-need-know http://forum.xda-developers.com/showthread.php?t=2048511 Cheers, deltatux
Apparently Chainfire "plugged" the hole. Article: http://www.xda-developers.com/andro...ecurity-hole-demoed-and-plugged-by-chainfire/ Thread with patch: http://forum.xda-developers.com/showthread.php?t=2050297
Nope. Well at lest they wont through Verizon. I informed my sister of the flaw and she contacted them about her Note II. According to the rep she spoke to, she said it's a manufacture problem. Take it up with them.
Only need a software fix by samsung, good way to root though if you wanted to without messing with custom kernels. Just be wary what apps you install.
Yep, just a kernel bug, no need to panic too much if you watch what you download/run. This will be fixed according to Samsung. deltatux
