New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.
Starred by 8 users

Issue metadata

Status: Verified
Owner: ----
Closed: Mar 2014
Cc:
EstimatedDays: ----
NextAction: ----
OS: Chrome
Pri: 0
Type: Bug-Security


Sign in to add a comment
link

Issue 351788: Security: Pwnium 4 GeoHot tracking bug

Reported by jorgelo@chromium.org, Mar 12 2014 Project Member

Issue description

We received a full persistent exploit from GeoHot. Stay tuned.
 
geohot.zip
87.2 KB Download

Comment 1 by jorgelo@chromium.org, Mar 12 2014

Blockedon: chromium:351796
 Issue 351796  for try_touch_experiment command injection.

Comment 2 by jorgelo@chromium.org, Mar 12 2014

Labels: Restrict-View-Google

Comment 3 by jorgelo@chromium.org, Mar 12 2014

Blockedon: chromium:344051
Status: Available
 Issue 344051  is persistence.

Comment 4 by jorgelo@chromium.org, Mar 12 2014

Cc: tommi@chromium.org

Comment 5 by jorgelo@chromium.org, Mar 12 2014

Blockedon: chromium:351811
root escalation:  issue 351811 

Comment 6 by sumit@chromium.org, Mar 12 2014

Cc: arscott@chromium.org olofj@chromium.org

Comment 7 by infe...@chromium.org, Mar 12 2014

 Issue 344051  for v8 oob read/write.

Comment 8 by infe...@chromium.org, Mar 12 2014

Blockedon: chromium:351815

Comment 9 by infe...@chromium.org, Mar 12 2014

 Issue 351815  for swapped out RVH issue.

Comment 10 by sumit@chromium.org, Mar 13 2014

Cc: yjlou@chromium.org

Comment 11 by jorgelo@chromium.org, Mar 13 2014

Cc: deepakg@chromium.org

Comment 12 by k...@google.com, Mar 14 2014

Cc: kamakshi@chromium.org

Comment 13 by dharani@chromium.org, Mar 14 2014

Cc: scunning...@chromium.org

Comment 14 by jorgelo@chromium.org, Mar 18 2014

Labels: -Restrict-View-Google
Status: Fixed
Marking as fixed since the fixes were pushed to users.

Comment 15 by timwillis@chromium.org, Mar 26 2014

Labels: reward-150000
Adding reward amount.

Comment 16 by timwillis@chromium.org, Mar 26 2014

Labels: reward-unpaid

Comment 17 by sirdarck...@gmail.com, Mar 27 2014

Cc: mbevand@google.com

Comment 18 by timwillis@chromium.org, Apr 15 2014

Cc: gfh1...@gmail.com
Labels: -reward-unpaid reward-inprocess
Starting payment process

Comment 19 by timwillis@chromium.org, Apr 30 2014

Labels: -reward-inprocess
Processing via our e-payment system can take up to 30 days, but reward should be on its way to you.

I'm also organizing a Pixel as your Chromebook award, but let me know if you want something else.

Comment 20 by timwillis@chromium.org, Apr 30 2014

Labels: Security_Impact-NA
Adding Security-Impact-NA (This is just a tracking bug)

Comment 21 by patricia@chromium.org, May 15 2014

Labels: VerifyIn-36

Comment 22 by ClusterFuzz, Jun 24 2014

Project Member
Labels: -Restrict-View-SecurityTeam
Bulk update: removing view restriction from closed bugs.

Comment 23 by krisr@chromium.org, Jul 30 2014

Status: Verified

Comment 24 by sheriffbot@chromium.org, Mar 22 2016

Project Member
Labels: -Security_Impact-NA

Comment 25 by sheriffbot@chromium.org, Oct 1 2016

Project Member
This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Comment 26 by sheriffbot@chromium.org, Oct 2 2016

Project Member
This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Comment 27 by sheriffbot@chromium.org, Oct 2 2016

Project Member
Labels: Restrict-View-SecurityNotify

Comment 28 by mbarbe...@chromium.org, Oct 2 2016

Labels: allpublic

Comment 29 by sheriffbot@chromium.org, Oct 3 2016

Project Member
Labels: -Restrict-View-SecurityNotify
This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Sign in to add a comment