Widespread Android vulnerability due to Linux 3.6+

The reason I mention it is for all of us who buy cheap products running Android and never change over the OS (or in the case of my smartphone, can't).

Here is the link to a FoxNews (I'm not otherwise any fan of them) article: Linux flaw puts 1.4 billion Android devices at risk of spying attack, experts warn

=========
-= Cloud 9 =-

Joey, many thanks for the info.

Is this something we can fix on our own or do we need a patch from bodhi for the kernel?

you are required to append the following to /etc/sysctl.conf:

net.ipv4.tcp_challenge_ack_limit = 999999999

Once done, use sysctl -p to activate the new rule. You need to perform root to do this.

https://thehackernews.com/2016/08/linux-tcp-packet-hacking.html

feas,

> Is this something we can fix on our own or do we
> need a patch from bodhi for the kernel?

This problem was fixed in 4.7. So work around needed for kernel 4.6.x

----------------------------------------------------------
EDITED: to correct info for version effected.

-bodhi
===========================
Forum Wiki
bodhi's corner (buy bodhi a beer)



Edited 1 time(s). Last edit at 08/17/2016 04:45PM by bodhi.

And Joey, this is a better Ars article:
http://arstechnica.com/security/2016/08/linux-bug-leaves-1-4-billion-android-users-vulnerable-to-hijacking-attacks/

Fox "News"? common :))

-bodhi
===========================
Forum Wiki
bodhi's corner (buy bodhi a beer)

as much as i adore Android, it should only ever be considered an "entertainment system" not an "operating system"

@bodhi & all
The vector vulnerability exists in all kernels from 3.6 upwards, so it is best to add the "fix" outlined above to all version above 3.6 until a new patched kernel is released upstream.



Edited 1 time(s). Last edit at 08/17/2016 04:21AM by Gravelrash.

Gravelrash Wrote:
-------------------------------------------------------
> as much as i adore Android, it should only ever be
> considered an "entertainment system" not an
> "operating system"
>
> @bodhi & all
> The vector vulnerability exists in all kernels
> from 3.6 upwards, so it is best to add the "fix"
> outlined above to all version above 3.6 until a
> new patched kernel is released upstream.


thanks!

@ all: I agree, you said it better than I could :-)

=========
-= Cloud 9 =-

Indeed, thanks for checking Gravelrash.

https://security-tracker.debian.org/tracker/CVE-2016-5696

It was fixed in kernel 4.7

-bodhi
===========================
Forum Wiki
bodhi's corner (buy bodhi a beer)

I was never worried in the least about the Debian installs here.

Androids though, never inspired my faith, so I keep them offline for the most part. Access home cloud storage and leave it at that.

There's a good quote from my last Computer Science professor: the probability you're being watched is directly proportional to the stupidity of your actions. -edit- and the rules applied to him as well :-D

=========
-= Cloud 9 =-



Edited 1 time(s). Last edit at 08/21/2016 06:21PM by JoeyPogoPlugE02.