Reverse Engineering, cryptography, exploits, hardware, file formats, and generally giving computers a hard time. Occasional CTF player. Fedi: @retr0id@retr0.id
Introducing acropalypse: a serious privacy vulnerability in the Google Pixel's inbuilt screenshot editing tool, Markup, enabling partial recovery of the original, unedited image data of a cropped and/or redacted screenshot. Huge thanks to @David3141593 for his help throughout!
This bug is a bad one.
You can patch it, but you can't easily un-share all the vulnerable images you may have sent.
The bug existed for about 5 years before being patched, which is mind-blowing given how easy it is to spot when you look closely at an output file.
Introducing acropalypse: a serious privacy vulnerability in the Google Pixel's inbuilt screenshot editing tool, Markup, enabling partial recovery of the original, unedited image data of a cropped and/or redacted screenshot. Huge thanks to @David3141593 for his help throughout!
Introducing acropalypse: a serious privacy vulnerability in the Google Pixel's inbuilt screenshot editing tool, Markup, enabling partial recovery of the original, unedited image data of a cropped and/or redacted screenshot. Huge thanks to
I just made it more cursed!
Previously it required an LD_PRELOAD hack to provide some functions that libgcc doesn't currently export.
Now, I inject those missing functions directly into the binary - so it Just Works!
Here's the patcher script, *hopefully* it's self-explanatory enough. See the widevine-aarch64 AUR package page for more info on how to get it installed.
For some reason it doesn't work with netflix, perhaps it doesn't like the fact that I'm not running chromeos (I'll try spoofing the useragent...)
Spotify does work though.
I just got Widevine working on Asahi Linux 😎
I had to hand-patch the binary to be compatible with asahi's 16KB page size, as well as installing a custom glibc with support for the RELR relocations used.
I'll try to document this and make a guide soon™