CVE-2014-0973
https://www.codeaurora.org/projects...arsing-during-boot-image-authentication-leads
Is this going to be of any benefit to us?
According to NighthawkXL it may benifit us, he says it looks good on paper, but implementing the exploit tk a device is a different ball game, i beleive it will help acheive an exploit for the samsung bootloader, but only time will tell
AT&T Galaxy S4 4.3 MK2 rooted with saferoot, safestrap recovery installed, Running Hyperdrive ROM, Praying for unlocked bootloader lol
LiLPurP said:
According to NighthawkXL it may benifit us, he says it looks good on paper, but implementing the exploit tk a device is a different ball game, i beleive it will help acheive an exploit for the samsung bootloader, but only time will tell
AT&T Galaxy S4 4.3 MK2 rooted with saferoot, safestrap recovery installed, Running Hyperdrive ROM, Praying for unlocked bootloader lol
Click to expand...
Click to collapse
Do take my statement with a grain of salt however. It'll probably be a few days before Surge & Co. make any statements regarding this exploit. The big question though is if this is Dan Rosenberg's TrustZone kernel exploit that he'll be showing off at Blackhat in August or if this something else in the code for LittleKernel.
I have been wondering that since i first saw it, guess we will have to wait and see, has anyone asked him about it, or has he commented at all on the subject?
AT&T Galaxy S4 4.3 MK2 rooted with saferoot, safestrap recovery installed, Running Hyperdrive ROM, Praying for unlocked bootloader lol
LiLPurP said:
Has anyone asked him about it, or has he commented at all on the subject?
Click to expand...
Click to collapse
I doubt it, and even so he'll likely decline to comment. He and XDA have had fallout of sorts...
Thats is quite unfortunate, ive hear ppl say the same, but im not to sure what happened, would love to kno if u have time to pm me, but either way he is a great dev, and hopefully this is a great find
AT&T Galaxy S4 4.3 MK2 rooted with saferoot, safestrap recovery installed, Running Hyperdrive ROM, Praying for unlocked bootloader lol
Something might get an unlock from this but not likely to be a Sammy device. Ryanbg, jeboo and myself all looked into it before finding out from a couple of highly reliable sources that Samsung devices aren't effected, including ralekdev (he also was the one who reported it).
Surge1223 said:
Something might get an unlock from this but not likely to be a Sammy device. Ryanbg, jeboo and myself all looked into it before finding out from a couple of highly reliable sources that Samsung devices aren't effected, including ralekdev (he also was the one who reported it).
Click to expand...
Click to collapse
Figured it was too good to be true. Looking forward to Blackhat and the things that might come from it. Thanks Surge and keep up the good work!!!!
Anyone heard if development for the Kexec moduel on the s4 has made any progress?
AT&T Galaxy S4 4.3 MK2 rooted with saferoot, safestrap recovery installed, Running Hyperdrive ROM, Praying for unlocked bootloader lol
Related
I have motorola Razr Maxx HD... recently I updated system to 9.18.79. However, today i saw cyanogenmod 10.2 version roll out and I really want to try 4.3 version since I have been stuck on 4.1 for almost a year. Unfortunately, when I try using motopocalypse to unlock bootloader, it keeps failing. Than I was thinking maybe I can downgrading back to the old version than unlock bootloader but on the website it says DO NOT USE THIS UTILITY ON THE LATEST 4.1.2 OTA UPDATE. I guess 9.18.79 is the newest OTA version. Therefore, I was wondering if there is anyway that i can unlock bootloader under 9.18.79 or downgrade whole system to lower version. So I can install cyanogenmod 10.2
Thank you
You're out of luck, sorry. There's no way to unlock after taking the newest OTA.
I believe that the correct answers to your questions about your recently updated Razr Maxx HD are -- NO, at this time there is no way to unlock the bootloader if you've installed the 9.18.79 update, YES, you can still root your phone. YES, you can downgrade your phone to 9.16.6 (but you still won't be able to unlock your bootloader after doing so). I have a Maxx HD with exactly this set of circumstances. The phone was running 9.18.79 when I got it. After having no luck unlocking the bootloader (as expected) I was able to root it using a method I found in this forum, then installed SafeStrap, then installed a couple of older stock kernel-based custom ROMs. It's certainly not as good as before the update but I'm rooted, all my apps run and I'm rid of all the Verizon bloatware. Not perfect but not bad.
lesdense said:
I believe that the correct answers to your questions about your recently updated Razr Maxx HD are -- NO, at this time there is no way to unlock the bootloader if you've installed the 9.18.79 update, YES, you can still root your phone. YES, you can downgrade your phone to 9.16.6 (but you still won't be able to unlock your bootloader after doing so). I have a Maxx HD with exactly this set of circumstances. The phone was running 9.18.79 when I got it. After having no luck unlocking the bootloader (as expected) I was able to root it using a method I found in this forum, then installed SafeStrap, then installed a couple of older stock kernel-based custom ROMs. It's certainly not as good as before the update but I'm rooted, all my apps run and I'm rid of all the Verizon bloatware. Not perfect but not bad.
Click to expand...
Click to collapse
Thank you for the reply...yeah i am able to root my phone...but performance is still under my expectation...Just really want to try out of 4.3 because it seem to have much better optimize. Thank you for all the information..
jackforever said:
Thank you for the reply...yeah i am able to root my phone...but performance is still under my expectation...Just really want to try out of 4.3 because it seem to have much better optimize. Thank you for all the information..
Click to expand...
Click to collapse
Well that's why you never take updates without knowing for sure you can still use tools. Lesson learned.
Sent from my PACMAN MATRIX HD MAXX
deeje00 said:
Well that's why you never take updates without knowing for sure you can still use tools. Lesson learned.
Sent from my PACMAN MATRIX HD MAXX
Click to expand...
Click to collapse
I'm in the same boat, I have one question. Does anyone use the Motorola way to unlock bootloader? I found the website to unlock, wondered why that isn't an option.
It's for developer editions only.
Sent from my PACMAN MATRIX HD MAXX
Thanks for answering these questions. Who and how close are they to unlocking it? Do you see it happening soon?
dudewithspots said:
Thanks for answering these questions. Who and how close are they to unlocking it? Do you see it happening soon?
Click to expand...
Click to collapse
I don't think anyone is working on this. The guy who came up with the exploit to unlock the bootloader in the first place said immediately after releasing it that he isn't touching Motorola devices' bootloaders anymore because they have become so difficult to crack. The update in the 9.16 OTA patched a pretty big security hole in the basic Android framework. That was a good thing because it prevents thieves from hacking your phone (hopefully) but it also took away a lot of our "freedom" with these devices, unfortunately.
Basically the process of finding a way to unlock the bootloaders is extremely difficult and not a rewarding enough venture for anyone to bother with right now. Don't hold your breath for a bootloader unlock anytime soon (likely never). If you've updated to 9.16 (I'm with you here, after replacing a bootloader unlocked, rooted and running CM10.1 phone with a cracked screen through insurance and receiving a replacement with an un-unlockable bootloader out of the box) kiss your ROMing dreams goodbye. The best you can do with the phone now is root it, install SafeStrap and run ROMs based off the stock kernel.
My advice to any and all willing to listen:
Get away from Verizon as fast as you can. They are making sure their phones release now-a-days with un-unlockable bootloaders. The upcoming Droid Ultra, Maxx, and Mini as well as the Moto X will all be locked down with no hope of unlocking their bootloaders on Verizon. The ATT Moto X will also not have an unlockable bootloader.
The best carrier for devs and flash hounds will be T-Mobile from here on out as they are marketing to people with their own devices and not locking down the software the way the big V is.
This really sucks because my favorite thing about my Razr HD Maxx is the battery, and the only thing close to or better as far as battery size/life coming out is the new Droid Maxx. With out being abkle to install a custom ROM, though I feel like I'm using an iPhone. But a good alternative may be an S4 on T-Mobs with an extended battery (thanks to Samsungs removable batteries) or charging case or something like that.
You are a wealth of information, thank you!
Would I be able to install any rom with safestrap? and then I would just be stuck with current kernal? Or does the rom have to be special in some way? I want to get the CyanogenMod 10.3 version. Thoughts? If I can't, what would be the best option as far as stock kernal rom?
swboland said:
I don't think anyone is working on this. The guy who came up with the exploit to unlock the bootloader in the first place said immediately after releasing it that he isn't touching Motorola devices' bootloaders anymore because they have become so difficult to crack. The update in the 9.16 OTA patched a pretty big security hole in the basic Android framework. That was a good thing because it prevents thieves from hacking your phone (hopefully) but it also took away a lot of our "freedom" with these devices, unfortunately.
Basically the process of finding a way to unlock the bootloaders is extremely difficult and not a rewarding enough venture for anyone to bother with right now. Don't hold your breath for a bootloader unlock anytime soon (likely never). If you've updated to 9.16 (I'm with you here, after replacing a bootloader unlocked, rooted and running CM10.1 phone with a cracked screen through insurance and receiving a replacement with an un-unlockable bootloader out of the box) kiss your ROMing dreams goodbye. The best you can do with the phone now is root it, install SafeStrap and run ROMs based off the stock kernel.
My advice to any and all willing to listen:
Get away from Verizon as fast as you can. They are making sure their phones release now-a-days with un-unlockable bootloaders. The upcoming Droid Ultra, Maxx, and Mini as well as the Moto X will all be locked down with no hope of unlocking their bootloaders on Verizon. The ATT Moto X will also not have an unlockable bootloader.
The best carrier for devs and flash hounds will be T-Mobile from here on out as they are marketing to people with their own devices and not locking down the software the way the big V is.
This really sucks because my favorite thing about my Razr HD Maxx is the battery, and the only thing close to or better as far as battery size/life coming out is the new Droid Maxx. With out being abkle to install a custom ROM, though I feel like I'm using an iPhone. But a good alternative may be an S4 on T-Mobs with an extended battery (thanks to Samsungs removable batteries) or charging case or something like that.
Click to expand...
Click to collapse
Hey man, So I have SafeStrap but I am having a hard time finding roms that will work with safestrap. do you know of any?
dudewithspots said:
You are a wealth of information, thank you!
Would I be able to install any rom with safestrap? and then I would just be stuck with current kernal? Or does the rom have to be special in some way? I want to get the CyanogenMod 10.3 version. Thoughts? If I can't, what would be the best option as far as stock kernal rom?
Click to expand...
Click to collapse
None of the new roms only roms based on stock. Your gonna have to dig to roms started before April.
Sent from my PACMAN MATRIX HD MAXX
no exciting news about the current version of unlock still?
The new one probably won't be unlocked.
Sent from my PACMAN MATRIX HD MAXX
I unfortunately upgraded to 9.18.79 a while back and now that i'd like to unlock the bootloader, I can't.
However, I do have best buy insurance, assuming my screen is broken, I can get the device replaced with a refurbished unit. What are the odds the refurbished unit has not been updated to a version that cannot be unlocked?
thanks
ajent said:
I unfortunately upgraded to 9.18.79 a while back and now that i'd like to unlock the bootloader, I can't.
However, I do have best buy insurance, assuming my screen is broken, I can get the device replaced with a refurbished unit. What are the odds the refurbished unit has not been updated to a version that cannot be unlocked?
thanks
Click to expand...
Click to collapse
The odds are getting slimmer and slimmer as the days go on, but I have still seen a few people get replacements that have not been updated.
hello, im very sorry if this is covered a million times over by now. ive been using google as well as looking into all the fourms in xda. very confusing and kinda frustrated. i have searched for about 3 days. i am very much a noob and dont get the lingo. also post seems to spin off into installing custom roms. im just looking for pure root. bootloader and things of that nature i dont care much about. my problem is i have app data in my Motorola xt912 droid that i just rooted the other day. i cant use helium to get it out. so rooted with a program i found on here. bought titanium back up pro. i also bought helium pro since i was able to move data from this s3 to my girl friends s4. i do want to help support the devs that make these things possible for the average user that likes to keep things simple.
so i have this 4.3 update. so i see forums saying i can root while others say it will brick my phone. just looking for a straight answer. thank you for taking your time to read this and have a happy new years
device name
SCH-I535
model number
SCH-I535
android version
4.3
baseband version
I535VRUCML1
kernel version
3.0.31
[email protected] #1
Wed Dec 11 01:09:13 KST 2013
build number
JSS15J.I535VRUCML1
se for android status
permissive
hardware version
I535.10
Sorry to hear about your searching troubles. I think everyone here will admit that specific info about Tw 4.3 is hard to find in one place but we've got folks helping out in the 4.3 discussion thread. Ask anything and someone may have an informed answer.
You can use Saferoot to root TW VRUCML1 ota. Yes, my link is to a Galaxy S4 tool however we have multiple users in the discussion thread that have confirmed Saferoot works for our latest 4.3 OTA. Feel free to search in that thread and you will find confirmation. Root has been possible much of the last week, maybe two.
I know you said this but I'll just reiterate, we have root only nothing else for TW 4.3. Do not flash anything in Odin unless it's the 4.3 VRUCML1 tar to restore back to stock.
thank you!!!!!
ok this seemed to have worked. my phone wants to reboot but titanium back up pro says i have root. maybe in your nice guide which i havent found anyone who said this yet, that the program ask to disable knox. i clicked no. (another reason im scared to reboot my phone) i cliaked no because of all the post saying to disable knox will brick your phone
BROKEN1981 said:
ok this seemed to have worked. my phone wants to reboot but titanium back up pro says i have root. maybe in your nice guide which i havent found anyone who said this yet, that the program ask to disable knox. i clicked no. (another reason im scared to reboot my phone) i cliaked no because of all the post saying to disable knox will brick your phone
Click to expand...
Click to collapse
You should probably run that tool again and choose yes. Haven't heard of anyone choosing no, the people I've seen who had root chose yes. It's not explicitly stated but it does not hurt the phone in any capacity by selecting yes. To be honest though, idk what the difference is between selecting yes and no.
I'm not on the TW 4.3 OTA so maybe someone can provide input on the disabling Knox.
Sent from my SCH-I535 using Tapatalk 4
I just used saferoot on mine today. I honestly didn't see anything about disabling Knox when I did it, but when I installed titanium backup Knox Notification Manager was already disabled so I'm assuming it happened somewhere in the process. Phone is working great so far. I haven't tried defrosting it because, well.... Why, it's working fine the way it is.
Sent from my SCH-I535
Is there any way for me to get Kitkat (4.4) on my stock, unrooted, locked bootloader, verizon galaxy s3? There are a mind-numbingly large number of threads and most of them include some kind of paragraph at the top like; "this article assumes you're unlocked rooted and custom recovery installed." Well I'm not. And when I try to do those things I keep running into other articles telling me all the ways doing that will ruin my phone.
All I want is KitKat without having to wait for BigRed to give it to me. Is that possible? Assume I just bought the phone from Verizon and I'm peeling off the screen protector sticker for the first time.
Stretch31 said:
Is there any way for me to get Kitkat (4.4) on my stock, unrooted, locked bootloader, verizon galaxy s3? There are a mind-numbingly large number of threads and most of them include some kind of paragraph at the top like; "this article assumes you're unlocked rooted and custom recovery installed." Well I'm not. And when I try to do those things I keep running into other articles telling me all the ways doing that will ruin my phone.
All I want is KitKat without having to wait for BigRed to give it to me. Is that possible? Assume I just bought the phone from Verizon and I'm peeling off the screen protector sticker for the first time.
Click to expand...
Click to collapse
Nope, you can't get Kit Kat until Verizon officially releases an update.
Read the 4.3 sticky in the development section.
Sent from my HTC6525LVW using Tapatalk
I haven't used it as I didn't allow the 4.3 update, but you could look into safestrap - http://forum.xda-developers.com/showthread.php?t=2605648
I have the Verizon Samsung Galaxy s3 the prepaid version which is the I535PP and I've rooted it using towelroot and have flashed bootstrap recovery. Its still on 4.3. I accidentally deleted the SDM.apk file and can't upgrade to kit Kat. Has anyone had any luck flashing a tw 4.3 rom to this version and get it to boot or maybe have the stock firmware or the SDM.apk file for tw 4.3?
jam0688 said:
I have the Verizon Samsung Galaxy s3 the prepaid version which is the I535PP and I've rooted it using towelroot and have flashed bootstrap recovery. Its still on 4.3. I accidentally deleted the SDM.apk file and can't upgrade to kit Kat. Has anyone had any luck flashing a tw 4.3 rom to this version and get it to boot or maybe have the stock firmware or the SDM.apk file for tw 4.3?
Click to expand...
Click to collapse
I have the SDM.apk, I have no idea why I kept it however. You can indeed flash a 4.3 TW rom only if your on ML1 on 4.3
From my Wicked S3 on SOKP
I got mine yesterday.. its on 4.3 sdm downloaded kitkat but i rooted with towelroot and froze sdm I know 4.4 is extremely locked down and towelroot nor any other method works to root the 535pp on 4.4... any development with 535pp yet? Carbon rom?
dldennis76 said:
I got mine yesterday.. its on 4.3 sdm downloaded kitkat but i rooted with towelroot and froze sdm I know 4.4 is extremely locked down and towelroot nor any other method works to root the 535pp on 4.4... any development with 535pp yet? Carbon rom?
Click to expand...
Click to collapse
No development at all with the pp version
From my CM11 S3
I really hope I am not holding off for no reason.. is 4.3 any less locked than 4.4? I hope by not going to 4.4 they come out with a custom recovery for 4.3. If its locked either way then I would way rather be on 4.4 once they have a way to root this phone kicks ass so far! I had a sch-i535(lte) on VZW prepaid network and had access to the 4g network and they gave me a sim for free, but this 3g only phone keeps reception better and loads pages faster(no switching back and forth between 3-4g) It was well worth $150 at walmart
dldennis76 said:
I really hope I am not holding off for no reason.. is 4.3 any less locked than 4.4? I hope by not going to 4.4 they come out with a custom recovery for 4.3. If its locked either way then I would way rather be on 4.4 once they have a way to root this phone kicks ass so far! I had a sch-i535(lte) on VZW prepaid network and had access to the 4g network and they gave me a sim for free, but this 3g only phone keeps reception better and loads pages faster(no switching back and forth between 3-4g) It was well worth $150 at walmart
Click to expand...
Click to collapse
They are both locked as you know, 4.3 just had more TW roms available. Nice price also. The only recovery available for either locked bootloader is safestrap
Towelroot works for the 4.4.2 NE1 build as far as I know. If they send anymore updates beyond that root will more than likely be lost though
From my CM11 S3
There is no NE1 build for the 535pp i believe.. I could be wrong but I think the firmware is totally different
dldennis76 said:
There is no NE1 build for the 535pp i believe.. I could be wrong but I think the firmware is totally different
Click to expand...
Click to collapse
Your right it very well may be, I don't have the pp version so to be honest I was just going by what I already know
From my CM11 S3
I cant wait until they sell enough of these for it to be popular enough to develop and hopefully 4.3 can really be developed
dldennis76 said:
I cant wait until they sell enough of these for it to be popular enough to develop and hopefully 4.3 can really be developed
Click to expand...
Click to collapse
I'm leaning towards it not being in development as most people don't use the prepaid version for the point of rooting it and using custom roms. Your more than likely out of luck
From my CM11 S3
Can someone provide me with contact info of some devs that I can contact that may take the project up? I think the phone will gain popularity now that verizon prepaid is not highway robbery anymore.. $45 a month unlimited talk/ text 1gb data and can buy extra 3gb packages for cheap that instantly start working when the 1gb is over.. I recently just started seeing the phone for sale so it is fairly new release. I may be able to talk whoever into working on it. Who do I contact to get a "Verizon Prepaid SCH-I535PP" board in the main index?
dldennis76 said:
Can someone provide me with contact info of some devs that I can contact that may take the project up? I think the phone will gain popularity now that verizon prepaid is not highway robbery anymore.. $45 a month unlimited talk/ text 1gb data and can buy extra 3gb packages for cheap that instantly start working when the 1gb is over.. I recently just started seeing the phone for sale so it is fairly new release. I may be able to talk whoever into working on it. Who do I contact to get a "Verizon Prepaid SCH-I535PP" board in the main index?
Click to expand...
Click to collapse
Look around the VZW S3 development forums, I'd look for threads that are somewhat up to date as far as posts and look for the OP (original poster)
From my CM11 S3
I recently pick this phone up with the intent to flash it to straight talk(my current provider). Since the st gs3 is at least 100 dollars more it was a bargin. I was successful flashing over to st. voice, text, mms and data work flawlessly.
Im just curious if anyone has had any luck finding or devolping any kind of roms for it. I realize there is a small crowd for these phones but I can see its popularity will increase a little bit. I held out on the ota as well and stuck with 4.3 w/ towelroot and safestrap.
vq35ftw said:
I recently pick this phone up with the intent to flash it to straight talk(my current provider). Since the st gs3 is at least 100 dollars more it was a bargin. I was successful flashing over to st. voice, text, mms and data work flawlessly.
Im just curious if anyone has had any luck finding or devolping any kind of roms for it. I realize there is a small crowd for these phones but I can see its popularity will increase a little bit. I held out on the ota as well and stuck with 4.3 w/ towelroot and safestrap.
Click to expand...
Click to collapse
I'm nearly sure there won't be any development for the prepaid version. The contract version is the only one that would be in development going forward at this point
My S3 running BlissStalk
This is more just a general question of your opinion. I can't believe it's been almost a year and no bootloader unlock. I would have loved to see CM running on this device. It almost makes me want to go back to HTC because they openly allow the bootloader to be unlocked. IMO I think we have reached as best as we can with the echo ROM. I uninstalled it due to it not having much benefits. What are your thoughts on this device? Do you think we will ever see a bootloader unlock or is devolopment dead on this device?
I believe that development might pick up again with nougat's official January (i believe) release because it offers much more than Marshmallow. Maybe we'll get an official bootloader unlock or some dev on his spare time finds a way to do it. CM either way is only being made personally through devs now (closed its doors yesterday) but there will be a forthcoming with LineageOS from the same team.
Yeah I read about cm and lineage. So if I'm understanding. An OS update could provide a new vulnerability and allow an unlocked bootloader?
Keyword there is could. Hopefully some progress down the line would be nice and if we got to start a prize pot for it, I wouldn't mind.
I would definitely kick in some money to a bootloader unlock bounty. Right now my only 2 complaints with the s7 are lack of custom roms and not being able to find a good full coverage glass screen protector. If I can help one of those I will. I am half tempted to sell my tmo s7 and buy an exynos s7 because there seems to be more development there. But I'll wait for nougat.
jah feel
I feel your pain. When I first planned on getting the S7, I was excited about getting a sexy-design phone with better specs and putting all my music on the phone via a 128GB SD card and chilling out with ViPER4Android... but that was all a dream. I've been very hesitant to go through with the current root method because from what I've read, there are tons of bugs to deal with and tons of tweaks to do to not get very far in the end. I'm honestly very sad about this purchase. If I had more time to research the locked bootloader issue, I would have gone with a different phone. But my S5 finally gave up and I had to get a new phone ASAP. I would also pitch in for a bootloader unlock or something. I mainly want a stable phone with ViPER4Android. Can't live without it... it's been hell. Halp pl0x.
I would definetely pay for an unlocked bootloader also. The exynos definitely seems to have more devolpment than the u.s. But I'm rooted and after flashing a fix+debloat and installing Xposed everything is running smooth. It would be awesome to see more devolepment though.
sparky2029 said:
I would definetely pay for an unlocked bootloader also. The exynos definitely seems to have more devolpment than the u.s. But I'm rooted and after flashing a fix+debloat and installing Xposed everything is running smooth. It would be awesome to see more devolepment though.
Click to expand...
Click to collapse
Can you link me to the posts about the fix+debloat you flashed please? I have tried rooting and couldn't figure out how to fix the super slowness and the overheating. Also, what Firmware are you running?
r3xx3r said:
Can you link me to the posts about the fix+debloat you flashed please? I have tried rooting and couldn't figure out how to fix the super slowness and the overheating. Also, what Firmware are you running?
Click to expand...
Click to collapse
Sure thing buddy here you go https://forum.xda-developers.com/tmobile-galaxy-s7/help/development-dead-t3530239#post70398278
---------- Post added at 01:17 AM ---------- Previous post was at 01:14 AM ----------
r3xx3r said:
Can you link me to the posts about the fix+debloat you flashed please? I have tried rooting and couldn't figure out how to fix the super slowness and the overheating. Also, what Firmware are you running?
Click to expand...
Click to collapse
Sorry I put the wrong link twice.. Heres the right one https://forum.xda-developers.com/ve...-to-notes-root-install-xposed-unroot-t3411039
It's under recommended next steps for the flash fix