Security Patch 23.21.44

Discussion in 'Motorola Droid Turbo' started by D._Manley, Oct 6, 2015.

  1. D._Manley

    D._Manley New Member

    Joined:
    Feb 27, 2015
    Messages:
    28
    Likes Received:
    10
    Trophy Points:
    3
    Ratings:
    +13
    Installed the security update above this morning without issue and since it only specified as a security patch, I "assumed" it was the long awaited Stagefright vulnerability fix. After a couple of reboots I ran two different Stagefright detectors and both failed. So, either the two detectors are both flawed or, the OTA update is for other vulnerabilities. I would be hesitant to trust that the Stagefright risk is corrected until we see an actual changelog of what's in 23.21.44.
     
    • Like Like x 1
  2. CaptainAmerica

    CaptainAmerica Senior Member

    Joined:
    Aug 21, 2015
    Messages:
    64
    Likes Received:
    35
    Trophy Points:
    58
    Ratings:
    +38
    Current Phone Model:
    Droid Turbo
    Yep, me too. I run again Lookout Stagefrigth Detector after the update and it still reports vulnerability. Go figure. Keeping MMS auto-retrieval off...
     
  3. k1ngr4t

    k1ngr4t Senior Member

    Joined:
    May 28, 2011
    Messages:
    1,487
    Likes Received:
    112
    Trophy Points:
    63
    Ratings:
    +114
    Current Phone Model:
    Z Force
    Sorry I've been inactive for awhile. I also got the update, but what is the Stagefright vulnerability?
     
  4. TripL

    TripL New Member

    Joined:
    Nov 11, 2009
    Messages:
    12
    Likes Received:
    5
    Trophy Points:
    3
    Location:
    New England
    Ratings:
    +5
    Received the download for this update this afternoon. Only 30MB and just said security patch. Update was uneventful which I'd say is a good thing in this case. TurboUpdate_2015-10-10a.png TurboUpdate_2015-10-10b.png
     
  5. Sajo

    Sajo Diamond Member

    Joined:
    Jan 25, 2013
    Messages:
    11,309
    Likes Received:
    7,064
    Trophy Points:
    1,863
    Location:
    Tennessee
    Ratings:
    +7,573
    Current Phone Model:
    Moto Droid Z Force
    Here is how I understand it (in laymen's terms). Some security company found a vulnerability in Android that if a hacker sent you a malicious picture in a text (MMS message) that had a very specific code in it, they could maybe take control of your phone and you would not know it. So...they would have to know how to write this malicious code, embed it into a picture, know your specific phone number and send it to you as a MMS text. Then....if you opened the text and viewed the pic...they could maybe take control of your phone. The whole thing was way overblown by the tech media in my opinion. It was not some virus just being spread around the world...it was very specific and apparently no one has ever been hacked using this method. But people freaked out and whined and cried because their phones didn't have the "patch". The company that found the vulnerability then made an app that you can check to see if your phone is patched or not...and if not the app will take you to their website to buy their products. Brilliant! That's not fishy at all? Oh..and now they have mysteriously found a new vulnerability that is similar to the first but it involves texting you a malicious audio file. How convenient that as many phones get the patch...they find another vulnerability...so now we all need another patch...according to them. I still think the whole think was blown way out of proportion & they made a ton of money out of it. But that's just me.
     
    • Like Like x 1
  6. bigbadwulff

    bigbadwulff Member

    Joined:
    Dec 10, 2012
    Messages:
    360
    Likes Received:
    19
    Trophy Points:
    18
    Ratings:
    +24
    So now we receive videos with stage fright label or whatever it is and have to mess with that now.

    Sent from my XT1254 using Tapatalk
     
  7. Sajo

    Sajo Diamond Member

    Joined:
    Jan 25, 2013
    Messages:
    11,309
    Likes Received:
    7,064
    Trophy Points:
    1,863
    Location:
    Tennessee
    Ratings:
    +7,573
    Current Phone Model:
    Moto Droid Z Force
    Possibly. If the hacker knows how to embed the code into the file and then if they know your specific phone number and if they send you the malicious file. For me....that's too many if's to worry about.

    Sent from my XT1254 using Tapatalk