Project

General

Profile

Actions

Issue #1359

closed

Device lock bypass - CVE-2013-6271

Added by Wolfgang Wiedmeyer over 8 years ago. Updated over 4 years ago.

Status:
Closed
Priority:
High
Category:
Security
Target version:
Start date:
09/28/2015
Due date:
% Done:

90%

Estimated time:
Resolution:
wontfix
Device:
Grant:
Type of work:

Description

Replicant is affected by the following vulnerability: https://www.cvedetails.com/cve/CVE-2013-6271
More information: http://blog.curesec.com/article/blog/CVE-2013-6271-Remove-Device-Locks-from-Android-Phone-26.html

You can test it for yourself with the following adb command:
adb shell am start -n com.android.settings/com.android.settings.ChooseLockGeneric --ez confirm_credentials false --ei lockscreen.password_type 0 --activity-clear-task
Your device lock should now be removed.

The upstream patch is here: https://android.googlesource.com/platform/packages/apps/Settings/+/66026773bbf1d7631743a5b892a4f768c694f868%5E!/
The patch needed to be modified for compatibility with replicant and the modified version is attached.
If you run the above command with the patch applied, you should now get prompted for your lock password/pin etc. and the lock is not just removed.


Files

Actions #1

Updated by My Self over 8 years ago

  • Status changed from New to In Progress
  • % Done changed from 0 to 90

Thanks a lot for providing that patch!

I've merged it to my local repo and successfully compiled/reflashed/tested Replicant 4.2 on my i9100.

Actions #2

Updated by Denis 'GNUtoo' Carikli over 8 years ago

  • Device Not device specific added
Actions #3

Updated by Wolfgang Wiedmeyer almost 7 years ago

  • Target version changed from Any version to Replicant 4.2
  • Device added
  • Device deleted (Not device specific)
Actions #4

Updated by Kurtis Hanna over 4 years ago

  • Status changed from In Progress to Closed
  • Resolution set to wontfix

This issue has been closed because Replicant 4.2 is no longer supported or maintained.

Actions

Also available in: Atom PDF