Go Back   Android Forums > Android Phones > Samsung Galaxy S4 > (International) Galaxy S4 - All Things Root

Get excited for the Samsung Galaxy S5! Find everything you need and discuss it in our Galaxy S5 Forum!

Like Tree7Likes
  • 1 Post By ironass
  • 2 Post By Sydney99
  • 1 Post By ironass
  • 1 Post By Rudedawg
  • 1 Post By ironass
  • 1 Post By ironass

test: Reply
 
LinkBack Thread Tools
Old July 17th, 2013, 05:30 AM   #1 (permalink)
Senior Member
Thread Author (OP)
 
ironass's Avatar
 
Join Date: Aug 2010
Location: Cotswolds, England
Gender: Male
Posts: 8,007
 
Device(s): SGS4 GT-i9505. Rooted. GE KitKat 4.4.2 Danvdh ROM. Baseband: NC9. Kernel: ktoonsez+PhilZ
Carrier: Vodafone

Thanks: 1,086
Thanked 3,612 Times in 2,394 Posts
Default Master Key, Bluebox, root fix

(UPDATE See post #3)

Earlier last month, RFP from BlueBox published a sneak preview of his upcoming BlackHat talk, detailing a vulnerability in the Android platform that affects nearly all Android devices. Soon after, a vulnerability of similar nature and impact was published on Chinese forum. Both of these "Master Key" vulnerabilities allow an attacker to modify the code of an Android package without affecting the signature of the package as verified by the package manager, which has serious implications when considering system-signed packages. From an end user perspective, the vulnerabilities allow an attacker to take full control of a user's device.

Google will be issuing a fix for this in their newer releases of Android firmware. However, these fixes will take time to filter down the food chain from Google to carriers to users... if indeed, a firmware update is even issued for older devices that are now past End of Life, since this vulnerability affects 99% of all Android devices going back to Android 1.6, Donut.

Not wishing to take a chance, I have installed an app, free from the Play Store, which is the result of a research collaboration between Duo Security, a cloud-based two-factor authentication and mobile security company, and Northeastern University's System Security Lab (NEU SecLab) and patches the, "Master Key", vulnerabilities on rooted devices.

The patch is not phone, device or firmware specific... you can whack it on any Android device that is rooted. Once activated it patches the device but should you flash a different firmware you will need to patch it again.

The app is ReKey and can be downloaded from the Play Store

Download

Source


__________________
Did you know that hitting the Thanks button is quicker than typing it and the Search button is your friend.

Dummies Guides Rooting Galaxy S4 * Know Your S4 * Update Problems * Knox Security * Bloatware * GPS
ironass is online now  
Last edited by ironass; August 16th, 2013 at 01:34 AM. Reason: image added
Reply With Quote
The Following 5 Users Say Thank You to ironass For This Useful Post:
Atma (July 17th, 2013), lotus49 (July 19th, 2013), silentwitness (August 13th, 2013), sntaylor (July 17th, 2013), Sydney99 (July 17th, 2013)
sponsored links
Old July 19th, 2013, 05:43 AM   #2 (permalink)
Premium Member
 
sntaylor's Avatar
 
Join Date: Jan 2012
Location: Ayrshire, scotland
Posts: 1,477
 
Device(s): S2 Rooted, Nexus 7 (Shared So Stock) Galaxy W(Fiancees)
Carrier: Not Provided

Thanks: 479
Thanked 360 Times in 280 Posts
Default

I'm just curious about this article that states the s4 doesn't have to worry?
Making sense of the latest Android 'Master Key' security scare | Android Central
sntaylor is offline  
Reply With Quote
Old July 19th, 2013, 08:37 AM   #3 (permalink)
Senior Member
Thread Author (OP)
 
ironass's Avatar
 
Join Date: Aug 2010
Location: Cotswolds, England
Gender: Male
Posts: 8,007
 
Device(s): SGS4 GT-i9505. Rooted. GE KitKat 4.4.2 Danvdh ROM. Baseband: NC9. Kernel: ktoonsez+PhilZ
Carrier: Vodafone

Thanks: 1,086
Thanked 3,612 Times in 2,394 Posts
Default

Quote:
Originally Posted by sntaylor View Post
I'm just curious about this article that states the s4 doesn't have to worry?
Making sense of the latest Android 'Master Key' security scare | Android Central
UPDATE

In reality, because the S4's firmware is so new, that certainly the later updates should have the Google patch to fix the bug, 8219321. However, other Android devices that are older and have not received a recent build firmware update, will be at risk.

Since writing post #1, I have uninstalled ReKey and run a test using the newly released, SRT AppScanner, free from the Play Store. This confirmed that on my current firmware, MGA, build date 11 JUL; that there is no vulnerability to the Bluebox bug 8219321 and that ReKey is not required.

However, perhaps just as worryingly, the second, more recent, Master Key bug 9695860, usually referred to as the, "Chinese Master Key bug", has not been patched by Google in this firmware and is not covered by ReKey. This bug, only discovered very recently, is already patched by Google in the very latest versions of code for Android, (commit), but as yet, has not made its way down the chain for release.

There has in the last few days, been a Universal fix released for both the 8219321 and 9695860 bugs but this entails flashing a framework to your phone before applying the Universal Fix.

For more details on this, see Tungstwenty's xda thread, here.

The bottom line is that if you currently want protection from both of these bugs then Dual Fix is the way to go until a firmware for your device is released that patches both vulnerabilities. Which, in the case of older devices, might be never.

Below are 2 screenshots from SRT AppScanner showing that whilst ReKey has indeed patched one bug, the device is still vulnerable to the latest one. The 2nd screenhot shows the device after installing the framework .apk and Dual Fix .apk...

ReKey Fix only




Dual Fix

ironass is online now  
Last edited by ironass; August 16th, 2013 at 01:35 AM. Reason: images added
Reply With Quote
The Following User Says Thank You to ironass For This Useful Post:
sntaylor (July 19th, 2013)
Old July 19th, 2013, 09:45 AM   #4 (permalink)
Premium Member
 
sntaylor's Avatar
 
Join Date: Jan 2012
Location: Ayrshire, scotland
Posts: 1,477
 
Device(s): S2 Rooted, Nexus 7 (Shared So Stock) Galaxy W(Fiancees)
Carrier: Not Provided

Thanks: 479
Thanked 360 Times in 280 Posts
Default

Here's hoping that the developers will be able to build it into any future releases too :-) thanks for clearing that up though :-)
sntaylor is offline  
Reply With Quote
Old July 19th, 2013, 10:02 AM   #5 (permalink)
Senior Member
Thread Author (OP)
 
ironass's Avatar
 
Join Date: Aug 2010
Location: Cotswolds, England
Gender: Male
Posts: 8,007
 
Device(s): SGS4 GT-i9505. Rooted. GE KitKat 4.4.2 Danvdh ROM. Baseband: NC9. Kernel: ktoonsez+PhilZ
Carrier: Vodafone

Thanks: 1,086
Thanked 3,612 Times in 2,394 Posts
Default

Quote:
Originally Posted by sntaylor View Post
Here's hoping that the developers will be able to build it into any future releases too :-) thanks for clearing that up though :-)
I am given to understand that CM10.1.2 has both fixes already installed.

Have updated my previous post with some screenshots as I have now implemented the Dual Bug Fix.
sntaylor likes this.
ironass is online now  
Reply With Quote
The Following User Says Thank You to ironass For This Useful Post:
sntaylor (July 19th, 2013)
Old July 19th, 2013, 12:52 PM   #6 (permalink)
Premium Member
 
sntaylor's Avatar
 
Join Date: Jan 2012
Location: Ayrshire, scotland
Posts: 1,477
 
Device(s): S2 Rooted, Nexus 7 (Shared So Stock) Galaxy W(Fiancees)
Carrier: Not Provided

Thanks: 479
Thanked 360 Times in 280 Posts
Default

Yeah I read that too, but I'm not keen on using cm just now anyway....kinda gone off of it, especially when there are Sammy mods more available these days :-)
sntaylor is offline  
Reply With Quote
Old July 31st, 2013, 01:48 AM   #7 (permalink)
Senior Member
Thread Author (OP)
 
ironass's Avatar
 
Join Date: Aug 2010
Location: Cotswolds, England
Gender: Male
Posts: 8,007
 
Device(s): SGS4 GT-i9505. Rooted. GE KitKat 4.4.2 Danvdh ROM. Baseband: NC9. Kernel: ktoonsez+PhilZ
Carrier: Vodafone

Thanks: 1,086
Thanked 3,612 Times in 2,394 Posts
Default

The first hacks using the Master Key have already been detected...

Hackers use Android 'master key' exploit in China
ironass is online now  
Reply With Quote
Old August 13th, 2013, 03:02 AM   #8 (permalink)
Senior Member
Thread Author (OP)
 
ironass's Avatar
 
Join Date: Aug 2010
Location: Cotswolds, England
Gender: Male
Posts: 8,007
 
Device(s): SGS4 GT-i9505. Rooted. GE KitKat 4.4.2 Danvdh ROM. Baseband: NC9. Kernel: ktoonsez+PhilZ
Carrier: Vodafone

Thanks: 1,086
Thanked 3,612 Times in 2,394 Posts
Default

It would appear that cyber criminals are not slow to catch on to the Android Master Key exploits and more examples are cropping up...

More Exploits for Android 'MasterKey' Vulnerability Turn Up in the Wild

Researchers find trojanized banking app that exploits critical Android bug

The chances are that if you have received a firmware update for your device in the last 3 or 4 months, it will have a fix for 1 of the 2 identified exploits, Bug #8219321, but not the Bug #9695860 which Android has also issued a patch for but, as yet, has not made its way to any firmware releases yet.

You can check to see which of the Bugs you are vulnerable to by installing and running SRT AppScanner, free from the Google Play Store.

App developers are also starting to take these exploits seriously...

Android Flaw Puts Bitcoin Wallet Apps at Risk of Theft

Some degree of protection is offered by only using the Google Play Store and ensuring that installing apps from, "Unknown sources", is deselected on your device. Antivirus software will not prevent the Master Key exploits and may, or may not, detect them after installation.

You should also ensure that you have the very latest firmware installed for your device.

In the meantime, for rooted users, there is the fix mentioned earlier.
ironass is online now  
Reply With Quote
The Following 2 Users Say Thank You to ironass For This Useful Post:
Hawker (August 13th, 2013), Rudedawg (August 14th, 2013)
Old August 14th, 2013, 01:51 AM   #9 (permalink)
Senior Member
 
Rudedawg's Avatar
 
Join Date: Jun 2011
Location: Southampton UK
Posts: 853
 
Device(s): Samsung Galaxy S4 I9505 DjeMBeY MGA ROM
Carrier: EE

Thanks: 163
Thanked 93 Times in 78 Posts
Default



Check.
Rudedawg is offline  
Reply With Quote
Old August 14th, 2013, 02:27 AM   #10 (permalink)
Senior Member
 
Hawker's Avatar
 
Join Date: Aug 2011
Location: UK
Posts: 3,748
 
Device(s): GT-I9505 Firmware: Danvdh GE 4.4.2 Kernel: KT BL: MGA GSM: XXUFNC9 LTE: XXUBMH1
Carrier: EE UK (4G)

Thanks: 536
Thanked 1,711 Times in 1,048 Posts
Default

How do you get it to pass bug 9695860?
__________________
Device: Samsung GT-I9505 ROM: Danvdh GE 4.4.2 Kernel: KT GSM: XXUFNC9 LTE: XXUBMH1 B/L: MGA

My Scripts
My Web Site
Hawker is offline  
Reply With Quote
sponsored links
Old August 14th, 2013, 02:39 AM   #11 (permalink)
Senior Member
 
Sydney99's Avatar
 
Join Date: Jul 2011
Location: UK
Posts: 1,567
 
Device(s): Galaxy S4: ECHOE KitKat + Philz + ML6 modem
Carrier: Vodafone

Thanks: 451
Thanked 414 Times in 303 Posts
Default

Quote:
Originally Posted by Hawker View Post
How do you get it to pass bug 9695860?
You're dicing with a tongue lashing from rusty bum for not reading through his post thoroughly!! Instructions for applying the dual fix to get it to pass this bug are in his post above.

Now let's all wait for some ironass backlash......
ironass and sntaylor like this.
Sydney99 is offline  
Reply With Quote
The Following User Says Thank You to Sydney99 For This Useful Post:
Rudedawg (August 14th, 2013)
Old August 14th, 2013, 03:26 AM   #12 (permalink)
Senior Member
 
Rudedawg's Avatar
 
Join Date: Jun 2011
Location: Southampton UK
Posts: 853
 
Device(s): Samsung Galaxy S4 I9505 DjeMBeY MGA ROM
Carrier: EE

Thanks: 163
Thanked 93 Times in 78 Posts
Default

Quote:
Originally Posted by Hawker View Post
How do you get it to pass bug 9695860?

Read this ...

http://forum.xda-developers.com/showthread.php?t=2365294



then read and install this....


http://forum.xda-developers.com/showthread.php?t=1574401
Rudedawg is offline  
Reply With Quote
The Following User Says Thank You to Rudedawg For This Useful Post:
Hawker (August 14th, 2013)
Old August 14th, 2013, 06:19 AM   #13 (permalink)
Senior Member
Thread Author (OP)
 
ironass's Avatar
 
Join Date: Aug 2010
Location: Cotswolds, England
Gender: Male
Posts: 8,007
 
Device(s): SGS4 GT-i9505. Rooted. GE KitKat 4.4.2 Danvdh ROM. Baseband: NC9. Kernel: ktoonsez+PhilZ
Carrier: Vodafone

Thanks: 1,086
Thanked 3,612 Times in 2,394 Posts
Default

Quote:
Originally Posted by Sydney99 View Post
You're dicing with a tongue lashing from rusty bum for not reading through his post thoroughly!! Instructions for applying the dual fix to get it to pass this bug are in his post above.

Now let's all wait for some ironass backlash......
Sighs! Sadly Syd... I have come to accept the fact that some people are just not good with instructions and explanations, as this video demonstrates...

Instructions and Explanations
ironass is online now  
Reply With Quote
Old August 14th, 2013, 08:24 AM   #14 (permalink)
Premium Member
 
sntaylor's Avatar
 
Join Date: Jan 2012
Location: Ayrshire, scotland
Posts: 1,477
 
Device(s): S2 Rooted, Nexus 7 (Shared So Stock) Galaxy W(Fiancees)
Carrier: Not Provided

Thanks: 479
Thanked 360 Times in 280 Posts
Default

Just to confirm, I know that xposed framework and 3 minute are compatible, but....having already installed 3 minute, will it be ok flashing the fix over the top or will it create a boot loop? This is the only reason I haven't yet covered myself, that and I tend to stay away from unscrupulous websites ;-)
sntaylor is offline  
Reply With Quote
Old August 14th, 2013, 08:41 AM   #15 (permalink)
Senior Member
Thread Author (OP)
 
ironass's Avatar
 
Join Date: Aug 2010
Location: Cotswolds, England
Gender: Male
Posts: 8,007
 
Device(s): SGS4 GT-i9505. Rooted. GE KitKat 4.4.2 Danvdh ROM. Baseband: NC9. Kernel: ktoonsez+PhilZ
Carrier: Vodafone

Thanks: 1,086
Thanked 3,612 Times in 2,394 Posts
Default

I must admit that I did it the other way round and flashed Xposed first and then Dual Fix and then have updated 3Minit a few times thereafter. I can't see that it would cause a problem. Do a nandroid first and if there are any issues, do Xposed and then 3Minit.
sntaylor likes this.
ironass is online now  
Reply With Quote
Old August 14th, 2013, 08:52 AM   #16 (permalink)
Senior Member
 
Sydney99's Avatar
 
Join Date: Jul 2011
Location: UK
Posts: 1,567
 
Device(s): Galaxy S4: ECHOE KitKat + Philz + ML6 modem
Carrier: Vodafone

Thanks: 451
Thanked 414 Times in 303 Posts
Default

Quote:
Originally Posted by sntaylor View Post
Just to confirm, I know that xposed framework and 3 minute are compatible, but....having already installed 3 minute, will it be ok flashing the fix over the top or will it create a boot loop? This is the only reason I haven't yet covered myself, that and I tend to stay away from unscrupulous websites ;-)
I did it that way round. Ie 3minit then exposed. No issues
Sydney99 is offline  
Last edited by Sydney99; August 14th, 2013 at 12:13 PM.
Reply With Quote
The Following User Says Thank You to Sydney99 For This Useful Post:
sntaylor (August 14th, 2013)
Old August 14th, 2013, 09:35 AM   #17 (permalink)
Senior Member
 
Rudedawg's Avatar
 
Join Date: Jun 2011
Location: Southampton UK
Posts: 853
 
Device(s): Samsung Galaxy S4 I9505 DjeMBeY MGA ROM
Carrier: EE

Thanks: 163
Thanked 93 Times in 78 Posts
Default

Quote:
Originally Posted by Sydney99 View Post
I did it that way round. No issues

Xposed then 3minit. Not a hitch.
sntaylor likes this.
Rudedawg is offline  
Reply With Quote
Old August 14th, 2013, 01:06 PM   #18 (permalink)
Premium Member
 
sntaylor's Avatar
 
Join Date: Jan 2012
Location: Ayrshire, scotland
Posts: 1,477
 
Device(s): S2 Rooted, Nexus 7 (Shared So Stock) Galaxy W(Fiancees)
Carrier: Not Provided

Thanks: 479
Thanked 360 Times in 280 Posts
Default

Cheers guys, as I say I've a fare few other mods flashed too and I just can't be bothered starting it fresh, think I'll gamble(with a backup at hand....) and try flashing the fix over everything else :-)
sntaylor is offline  
Reply With Quote
Old August 14th, 2013, 01:14 PM   #19 (permalink)
Senior Member
Thread Author (OP)
 
ironass's Avatar
 
Join Date: Aug 2010
Location: Cotswolds, England
Gender: Male
Posts: 8,007
 
Device(s): SGS4 GT-i9505. Rooted. GE KitKat 4.4.2 Danvdh ROM. Baseband: NC9. Kernel: ktoonsez+PhilZ
Carrier: Vodafone

Thanks: 1,086
Thanked 3,612 Times in 2,394 Posts
Default

In the immortal words of Del Boy of Only Fools and Horses fame...

"He who dares Rodney... He who dares"
sntaylor likes this.
ironass is online now  
Reply With Quote
Old August 14th, 2013, 02:53 PM   #20 (permalink)
Senior Member
 
Rudedawg's Avatar
 
Join Date: Jun 2011
Location: Southampton UK
Posts: 853
 
Device(s): Samsung Galaxy S4 I9505 DjeMBeY MGA ROM
Carrier: EE

Thanks: 163
Thanked 93 Times in 78 Posts
Default

Quote:
Originally Posted by ironass View Post
In the immortal words of Del Boy of Only Fools and Horses fame...

"He who dares Rodney... He who dares"

"He who dares..." or that "Flash in haste" quote. I dont know which to believe anymore.
Rudedawg is offline  
Reply With Quote
sponsored links
Old August 14th, 2013, 03:24 PM   #21 (permalink)
Senior Member
Thread Author (OP)
 
ironass's Avatar
 
Join Date: Aug 2010
Location: Cotswolds, England
Gender: Male
Posts: 8,007
 
Device(s): SGS4 GT-i9505. Rooted. GE KitKat 4.4.2 Danvdh ROM. Baseband: NC9. Kernel: ktoonsez+PhilZ
Carrier: Vodafone

Thanks: 1,086
Thanked 3,612 Times in 2,394 Posts
Default

Quote:
Originally Posted by Rudedawg View Post
"He who dares..." or that "Flash in haste" quote. I dont know which to believe anymore.
On the grounds that we haven't heard from sntaylor since... and Syd did say that it worked for him, doing it the opposite way to you and I, Rudedawg... it is a little worrying!
sntaylor likes this.
ironass is online now  
Reply With Quote
Old August 14th, 2013, 04:19 PM   #22 (permalink)
Senior Member
 
Sydney99's Avatar
 
Join Date: Jul 2011
Location: UK
Posts: 1,567
 
Device(s): Galaxy S4: ECHOE KitKat + Philz + ML6 modem
Carrier: Vodafone

Thanks: 451
Thanked 414 Times in 303 Posts
Default

Sydney99 is offline  
Reply With Quote
Old August 14th, 2013, 05:01 PM   #23 (permalink)
Premium Member
 
sntaylor's Avatar
 
Join Date: Jan 2012
Location: Ayrshire, scotland
Posts: 1,477
 
Device(s): S2 Rooted, Nexus 7 (Shared So Stock) Galaxy W(Fiancees)
Carrier: Not Provided

Thanks: 479
Thanked 360 Times in 280 Posts
Default

Lol, sadly I've been at work until now, and the fitba was being streamed via my phone(thank fook for spare batteries) it may have to wait until tomorrow ;-) in the mean time, no hacking my phone! :-P
sntaylor is offline  
Reply With Quote
Reply


Go Back   Android Forums > Android Phones > Samsung Galaxy S4 > (International) Galaxy S4 - All Things Root
Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT -5. The time now is 03:03 AM.
Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.