Replicant

Maybe we should classify better the security issues.
Here it's a security bug (There is no category for that yet) and it's a privilege escalation.

Is it exploitable by f-droid applications?

Since android applications are somehow sandboxed, would toweelroot work?
It uses mmap, and the sockets API.

• IS mmap prevented?
• Does CONFIG_PARANOID_NETWORK prevent using sockets that way?

Denis.

To f-droid I just could repead, what I've wrote in http://redmine.replicant.us/issues/1023

It seems to work this way: "[...] the app runs some code, the code crashed [sic] android and leave it confused, in its confused state it thinks that the app should be root, then the app installs something to allow other apps to become root."
Source: http://geeksided.com/2014/06/16/towelroot-exploit-reveals-security-nightmare-android/
So it breaks the sandbox and should work unless I'm very much mistaken...