If you look at CVEs in Android a lot of them are tied to proprietary Qualcomm binaries. Its crazy how your GPU driver can be exploited to get root access.

If Qualcomm wasn’t so dependent on their vendor kernel that ships with tons of binary blobs it would be lot more secure.

  • slazer2au@lemmy.world
    link
    fedilink
    English
    arrow-up
    5
    ·
    3 days ago

    Na, OP sounds wrong in general.

    An unsecure binary is 100% the fault of the company creating it not the underlying kernel.

    Do you blame the Linux kernel for heartbleed? No, you blame openssl. Do you blame Java for Log4Shell? No you blame Apache

    • Possibly linux@lemmy.zipOPM
      link
      fedilink
      English
      arrow-up
      2
      ·
      3 days ago

      Maybe I did a bad job of phrasing this?

      I’m saying that the bulk of Android security issues come from Qualcomm binaries

      • slazer2au@lemmy.world
        link
        fedilink
        English
        arrow-up
        2
        ·
        3 days ago

        If Android wasn’t so dependent on Qualcomm binary blobs it would be lot more secure.

        might be more accurate?