1. robinhelenehebert's Avatar
    https://www.firstpost.com/tech/news-...s-7472731.html

    Problem is I updated to Android 9 through a separate process posted here and haven't been getting updates. What do I do?
    10-09-2019 11:11 AM
  2. mark7914's Avatar
    This seems to be a fuss about nothing, in that the vulnerability means that if your device is stolen then it may be able to be resold a little more easily.

    But once it's stolen you don't have it any more anyway, so it doesn't matter.

    Am I missing something; is there more to this?
    10-09-2019 12:48 PM
  3. Rukbat's Avatar
    This looks like CVE-2019-2114, which is limited to versions 8.0, 8.1, 9. So once you update to 10 (or get any update since 10/6) you'll be covered.

    The problem isn't so much whether your phone is covered, it's that the fact that there's no blacklist protection on Android phones (whether it's one or all) means that thieves without any technical knowledge will now be looking to steal Android phones, and selling them to unsuspecting buyers.

    Since this affects a lot of phones, and it's being fixed in Android 10, I'm moving it to the Android 10 forum.
    10-09-2019 01:01 PM
  4. adegbenroagoro's Avatar
    https://www.firstpost.com/tech/news-...s-7472731.html

    Problem is I updated to Android 9 through a separate process posted here and haven't been getting updates. What do I do?
    Once you download the latest security patch you protected against the vulnerability. The only question is when will it made available?

    "Samsung has sent out updates to Galaxy devices under its Security Maintenance Release (SMR). This update includes the patches from Google as well. The SMR update states that the patch improves protection against potential IMEI manipulation. On account of a device being stolen, criminals will be able to take advantage of this vulnerability to bypass the IMEI blacklist to resell the stolen device."
    10-09-2019 01:30 PM
  5. chanchan05's Avatar
    https://www.firstpost.com/tech/news-...s-7472731.html

    Problem is I updated to Android 9 through a separate process posted here and haven't been getting updates. What do I do?
    Then you also update the patches manually.
    10-09-2019 05:17 PM
  6. Gary02468's Avatar
    This seems to be a fuss about nothing, in that the vulnerability means that if your device is stolen then it may be able to be resold a little more easily.

    But once it's stolen you don't have it any more anyway, so it doesn't matter.

    Am I missing something; is there more to this?
    Yes, the problem is that the vulnerability makes it more likely that the phone will be stolen in the first place, because it increases a thief's incentive to steal it, either by stealth or (more straightforwardly) by force. The incentive is multiplied by the phone's high price.

    The chance of theft may still be small for a given individual, but the number of thefts would predictably increase substantially because of the vulnerability, if it weren't fixed promptly.
    10-10-2019 07:35 AM
  7. itic's Avatar
    you can brick your phone remotely using your google account if its stolen. If its online security youre worried about use a VPN..
    10-10-2019 05:39 PM

Similar Threads

  1. Replies: 8
    Last Post: 10-10-2019, 02:13 PM
  2. Samsung Gear S3 Always On display for longer
    By Android Central Question in forum Samsung Gear S3
    Replies: 2
    Last Post: 10-10-2019, 06:55 AM
  3. Why cant i draw wifi off of someones hot spot on my lg
    By Android Central Question in forum Ask a Question
    Replies: 4
    Last Post: 10-09-2019, 07:24 PM
  4. PSA: Samsung Security Vulnerabilities
    By strikeIII in forum Samsung Galaxy Note 10 & Note 10+ (2019)
    Replies: 1
    Last Post: 10-09-2019, 03:52 PM
  5. Samsung Gear S3 Always On display for longer
    By Android Central Question in forum Ask a Question
    Replies: 1
    Last Post: 10-09-2019, 02:13 PM
LINK TO POST COPIED TO CLIPBOARD