Project

General

Profile

Issue #1359

Device lock bypass - CVE-2013-6271

Added by Wolfgang Wiedmeyer over 5 years ago. Updated almost 2 years ago.

Status:
Closed
Priority:
High
Category:
Security
Target version:
Start date:
09/28/2015
Due date:
% Done:

90%

Estimated time:
Resolution:
wontfix
Device:
Grant:
Type of work:

Description

Replicant is affected by the following vulnerability: https://www.cvedetails.com/cve/CVE-2013-6271
More information: http://blog.curesec.com/article/blog/CVE-2013-6271-Remove-Device-Locks-from-Android-Phone-26.html

You can test it for yourself with the following adb command:
adb shell am start -n com.android.settings/com.android.settings.ChooseLockGeneric --ez confirm_credentials false --ei lockscreen.password_type 0 --activity-clear-task
Your device lock should now be removed.

The upstream patch is here: https://android.googlesource.com/platform/packages/apps/Settings/+/66026773bbf1d7631743a5b892a4f768c694f868%5E!/
The patch needed to be modified for compatibility with replicant and the modified version is attached.
If you run the above command with the patch applied, you should now get prompted for your lock password/pin etc. and the lock is not just removed.


Files

#1

Updated by My Self over 5 years ago

  • Status changed from New to In Progress
  • % Done changed from 0 to 90

Thanks a lot for providing that patch!

I've merged it to my local repo and successfully compiled/reflashed/tested Replicant 4.2 on my i9100.

#2

Updated by Denis 'GNUtoo' Carikli over 5 years ago

  • Device Not device specific added
#3

Updated by Wolfgang Wiedmeyer about 4 years ago

  • Target version changed from Any version to Replicant 4.2
  • Device added
  • Device deleted (Not device specific)
#4

Updated by Kurtis Hanna almost 2 years ago

  • Status changed from In Progress to Closed
  • Resolution set to wontfix

This issue has been closed because Replicant 4.2 is no longer supported or maintained.

Also available in: Atom PDF