clarify expat issues aren't exploitable on GrapheneOS

2024-09-17 16:13:51 -04:00 · 2024-09-17 16:13:51 -04:00 · a3241f84e8
commit a3241f84e8
parent a642b10b3d
1 changed files with 1 additions and 1 deletions
--- a/static/releases.html
+++ b/static/releases.html
@ -884,7 +884,7 @@
                        <li>Pixel 9 Fold Pro: temporarily manually add overlays from the stock Pixel OS to use the correct layout for quick settings, status bar, etc. and to provide the split folded/unfolded auto-rotate settings</li>
                        <li>hardened_malloc: fix microdroid virtual machine compatibility by using armv8a+dotprod+memtag when enabling memory tagging instead of armv9+memtag</li>
                        <li>init: disable auto-reboot setup for microdroid virtual machines
-                        <li>expat: backport patches for CVE-2024-28757, CVE-2024-45490, CVE-2024-45491 and CVE-2024-45492</li>
+                        <li>expat: backport patches for CVE-2024-28757, CVE-2024-45490, CVE-2024-45491 and CVE-2024-45492 (none of these is exploitable on official GrapheneOS since the DoS bug involves a feature Android doesn't use, the integer overflows require that size_t is 32-bit which is never going to be the case due to the code only being used in 64-bit processes and the negative parameter API issue requires a usage pattern not done by Android, but the integer overflows would be exploitable on an official build for a 32-bit device or a 64-bit device still partially using 32-bit drivers)</li>
                        <li>kernel (5.10): update to latest GKI LTS branch revision including update to 5.10.225</li>
                        <li>kernel (5.15): update to latest GKI LTS branch revision including update to 5.15.165</li>
                        <li>kernel (6.1): update to latest GKI LTS branch revision including update to 6.1.104</li>