GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE

  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

Conversation

Notices

  1. Embed this notice
    jiska 🦄:fairydust: (jiska@chaos.social)'s status on Monday, 10-Mar-2025 02:07:42 JST jiska 🦄:fairydust: jiska 🦄:fairydust:

    Tarlogic found a "backdoor" in the ESP32 chips: https://social.lansky.name/@hn100/114127956134801350

    Broadcom and Cypress chips have the same HCI "backdoor" allowing to write to the Bluetooth chip's RAM. This feature is used for firmware patches.

    We didn't request CVEs for that 9 years ago. Instead, we built the InternalBlue Bluetooth research framework: https://github.com/seemoo-lab/internalblue

    In conversation about a month ago from chaos.social permalink

    Attachments

    1. No result found on File_thumbnail lookup.
      Hacker News 100 (@hn100@social.lansky.name)
      from Hacker News 100
      Undocumented backdoor found in Bluetooth chip used by a billion devices Link: https://www.bleepingcomputer.com/news/security/undocumented-backdoor-found-in-bluetooth-chip-used-by-a-billion-devices/ Discussion: https://news.ycombinator.com/item?id=43301369
    2. Domain not in remote thumbnail source whitelist: repository-images.githubusercontent.com
      GitHub - seemoo-lab/internalblue: Bluetooth experimentation framework for Broadcom and Cypress chips.
      Bluetooth experimentation framework for Broadcom and Cypress chips. - seemoo-lab/internalblue
    • Jesse 🇫🇷 repeated this.
    • Embed this notice
      jiska 🦄:fairydust: (jiska@chaos.social)'s status on Monday, 10-Mar-2025 03:16:34 JST jiska 🦄:fairydust: jiska 🦄:fairydust:
      in reply to

      Firmware memory access through HCI was never considered a threat, since an attacker requires at least code execution in the Bluetooth daemon/driver for getting code execution in the Bluetooth firmware.

      This threat model changed slightly when we showed further privilege escalation, in particular code execution in the WiFi firmware via Bluetooth. Now, this interface is only available until Bluetooth firmware patches were applied at driver/daemon initialization.

      https://arxiv.org/pdf/2112.05719

      In conversation about a month ago permalink

Feeds

  • Activity Streams
  • RSS 2.0
  • Atom
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.