GrapheneOS includes fixes for many vulnerabilities not yet fixed in + Android. On modern devices with Generic Kernel Image (GKI) support, we the + update kernel to the latest stable GKI release many months before the stock OS + gets the update. This means we're shipping hundreds of fixes not included in + the stock OS including many security fixes. We also backport more fixes on top + of this for the kernel and for other components too.
+ +We often find new vulnerabilities ourselves and report them upstream. We've + reported dozens of vulnerabilities for both the generic Android codebase and + also for Pixels specifically. We also often find missed patches which were + supposed to be included but were missed, especially when there are device + specific components with partially shared but separate codebases for different + devices.
+ +Our overall approach is to focus on systemic privacy and security + improvements but fixing individual vulnerabilities is still very + important.
+GrapheneOS includes fixes for many vulnerabilities not yet fixed in - Android. On modern devices with Generic Kernel Image (GKI) support, we the - update kernel to the latest stable GKI release many months before the stock OS - gets the update. This means we're shipping hundreds of fixes not included in - the stock OS including many security fixes. We also backport more fixes on top - of this for the kernel and for other components too.
- -We often find new vulnerabilities ourselves and report them upstream. We've - reported dozens of vulnerabilities for both the generic Android codebase and - also for Pixels specifically. We also often find missed patches which were - supposed to be included but were missed, especially when there are device - specific components with partially shared but separate codebases for different - devices.
- -Our overall approach is to focus on systemic privacy and security - improvements but fixing individual vulnerabilities is still very - important.
-