scan for PackageInstaller exploit in the Android system and APKs before installing
#1 Updated by pserwylo almost 3 years ago
- Status changed from New to Resolved
Thanks for the report. This has been fixed (https://gitlab.com/fdroid/fdroidclient/commit/37b3f1ff57381ae4ae8b89e211e74ce1de2cc66c) and is available in the latest F-Droid stable release 0.82. It has also been available in the previous "-test" releases before that.
#2 Updated by hans almost 3 years ago
- Subject changed from scan for PackageInstaller exploit to scan for PackageInstaller exploit in the Android system and APKs before installing
- Status changed from Resolved to New
Thanks for following up on this, pserwylo. I actually filed this issue to make a scanner for the vulnerability in Android itself, and maybe even APKs that are trying to exploit it. Palo Alto Networks provided source code for their scanner.