So apparently some Android manufacturers not only won’t provide security patches, but will instead just lie to the customers that their software has been patched while all the vendor has done has been to change the date stamp on the security patch.
Pretty extreme lol, one more reason to run custom roms I guess…
I’m interested in how this ‘looks like in the real world’, so if you feel like it you should all test if we got any patches missing with SnoopSnitch (Play, F-Droid) and see how bad the situation actually is.
Update your phone to the latest software, run SnoopSnitch and post your results below!
EDIT: The version on F-Droid is outdated, by the time of writing only the Play Store version works on all phones, no root required.
Sony Xperia - Stock Nougat. 1 patch gap (CVE-2017-3544)
Same for the pixel 1st gen. It’s not very clear on what it’s checking. It says 1 inconclusive test (not patch), and patched 1. No idea what that means considering I’ve had dozens of patches.
I forgot that my Sony has to be update manually since it’s unlocked so after I updated it to Oreo (Stock, March patch, Nordic/Baltic version) the results are
41 Patched
0 Missing
13 Inconclusive
Rumours say Samsung, Sony and Google are providing the best update practices and so far this seems to be the case. Well, if Google was lacking behind they should be shunned lol.
This is just something to keep in mind when buying a new phone, shame on Nokia tho who apparently lacks behind, just because they flamboyantly promised that they would provide quick patches.
Also interesting to see how custom ROMs compare with stock.
I think the app isnt able to handle whatever the pixel phones are doing to handle updates (maybe their update system that uses multiple partitions) so the app is useless for those phones.
Yeah I imagine it is, but without more information on what its doing that not disclosing that its actually not comparable on some phones [which ones?], it makes me at least unable to trust its results. (not saying they are correct or not, just no longer trustworthy without more info on compatibility)
Surprised to see Motorola and OnePlus on that list- a little discouraging as I’m anticipating the OnePlus 6 announcement. LG and Samsung are infamous for delays in updates. I have an LG (imo good hardware/reliable) but use LineageOS.