××× Qualcomm ס ××××ך××ס ש׀֌×Öž× ×Öž× ××××× ××××¢× ×Ö·×€××× ×ך×× ×××Ö·×× ×¢×š×Ö·××××××× ×עך××× ×× ××× ×עך ×× ×§×Öž× × ×Öž××¢× "QualPwn". ×עך עךש×עך ×ַך××ס××¢×× (CVE-2019-10539) ×Ö·××Ö·×× ×Ö·× ×ך××× ××¢×××סעס ×Š× ×××× ×š×××Öž×××× ×§×¢×× ×××š× Wi-Fi. ×× ×š××¢ ׀֌ך×Öž×××¢× ××× ×€×֞ךש××¢×× ××× ×× ×€ÖŒ×š×ַ׀֌ך×××Ö·××¢×š× ×€×ך××××ַךע ××× ×× Qualcomm ××××ך××ס ×Öž× ××××× ××× ×Ö·××Ö·×× ×ַקסעס ×Š× ×× ××ַסע××Ö·× × ××Öž××¢× (CVE-2019-10540). ×ך×× ×€ÖŒ×š×Öž×××¢× ×€×֞ךש××¢×× ××× ×× icnss ש×֞׀עך (CVE-2019-10538) ××× ×××× ×¢×¡ ××¢×××¢× ×Š× ×עך×ך×××× ×× ××ך××€×ך×× × ×€×× ×××× ×§×Öž× ××××£ ×× ×§×¢×š× ××ך×× ×€×× ×× ×Ö·× ×ך××× ×€ÖŒ××Ö·××€×֞ך××¢. ×××× ×Ö· ק×Öž×××× ×ַ׊××¢ ×€×× ââââ×× ×××Ö·×× ×¢×š×Ö·××××××× ××× ×׊××× ×¢×§×¡×€ÖŒ×××××Ö·×, ×× ×Ö·××ַקעך ×§×¢× ×¢× ×š×××Öž×××× ××ַק×××¢× ×§×Öž× ×ך×Öž× ×€×× ×Ö· ××Ö·× ×׊עך 'ס ×××× ××××£ ×××֞ס Wi-Fi ××× ×ַק×××× (×× ××Ö·×€×Ö·×× ×š×ק×××××¢×š× ×Ö·× ×× ×§×֞ך×× ××× ×× ×Ö·××ַקעך ××¢× ×¢× ×§×Öž× × ×¢×§××¢× ×Š× ×עך ××¢×××קעך ××××ך××ס × ×¢×¥).
×× ××Ö·×€×Ö·×× ×€×××ק××× ××× ××¢××Ö·× ×¡×ך××××× ×€Ö¿×ַך Google Pixel2 ××× Pixel3 ס××ַך××€×Öž× ×¢×¡. ךעסע×ַך×שעךס ×֞׀֌ש×Ö·×Š× ×Ö·× ×× ×€ÖŒ×š×Öž×××¢× ×€ÖŒ×Ö·××¢× ×ש×Ö·×× ×ַ׀עקץ ×עך ××× 835 ××¢×××סעס ×××××š× ××××£ ×× Qualcomm Snapdragon 835 SoC ××× × ××ַעך ×ש×׀֌ס (ס××ַך××× × ××× ×× Snapdragon 835, ×× WLAN ×€×ך××××ַךע ××× ×× ×Ö·×ך××××× ××× ×× ××Öž××¢× ×¡×Ö·×ס×ס××Ö·× ××× ××¢×××€× ××× ×Ö·× ××€××¢××× ××¢×š× ×Ö·×€ÖŒ××ַק××ש×Ö·× ××× ××Ö·× ×׊עך ×€ÖŒ××Ö·×¥). ×××š× ×××× Qualcomm, ×× ×€ÖŒ×š×Öž×××¢× ×ַ׀עקץ ×¢×××¢××¢ ×××¥ ×€×ַךש×××¢× ×¢ ×ש×׀֌ס.
×עך××××Ö·×, ××××× ××¢× ×¢×š×Ö·× ××× ×€Ö¿×֞ך××ַ׊××¢ ×××¢×× ×××Ö·×× ×¢×š×Ö·××××××× ××× ×× ××׊×, ××× ××¢××Ö·××ס ×€ÖŒ××Ö·× × ×¢× ×Š× ×××× ×× ××€××¢×§× ××××£ 8 ××××××¡× ×××Ö· ×× ×©×××ַךץ ××Ö·× ×§×Öž× ×€Ö¿×¢×š×¢× ×¥. Qualcomm ××× Google ××¢× ×¢× × ×Öž×××Ö·×€××× ×€×× ×× ×€×š××××¢××¢× ××× ××ַךץ ××× ××Öž×× ×©××× ××׀ך××× ×€×קס×× (Qualcomm ×× ×€×֞ך×× ×××¢×× ×× ×€×š××××¢××¢× ××× ××× × ××ַך×××, ××× Google ××× ×€×ַך׀עס×××§× ×××Ö·×× ×¢×š×Ö·××××××× ××× ××××××¡× ×Ö·× ×ך××× ×€ÖŒ××Ö·××€×֞ך××¢ ×עך×××Ö·× ××ק×). ×× ××××¢×š× ×€×× ××¢×××סעס ×××××š× ××××£ Qualcomm ×ש×׀֌ס ××¢× ×¢× ×š×¢×§×Ö·××¢× ××× ×Š× ×× ×¡××Ö·×××š× ×× ×× ×××Š× ×עך×××Ö·× ××ק×× ××¢×.
××× ×Ö·××ש×Ö·× ×Š× ×ש×× ×©××Ö·××ת ×Š× Qualcomm ×ש×׀֌ס, ×× ××××××¡× ×עך×××Ö·× ×××§× ×Š× ×× ×Ö·× ×ך××× ×€ÖŒ××Ö·××€×֞ך××¢ ×××× ×××××Ö·× ×××¥ ×Ö· קך×××ש ×××Ö·×× ×¢×š×Ö·×××××× (CVE-2019-11516) ××× ×× ×ך×Öž×ק×Öž× ××××¢××Öž×Öž×× ×Öž× ×××××, ×××֞ס ×Ö·××Ö·×× ×Ö· ×Ö·××ַקעך ×Š× ××ס׀××š× ×××עך ק×Öž× ××× ××¢× ×§×Öž× ××¢×§×¡× ×€×× ×Ö· ׀֌ך××××××××©× ×€ÖŒ×š×֞׊עס ×××š× ×©××§× ×Ö· ס׀֌ע׊××¢× ×§×š×Ö·×€××¢× ××Ö·×× ×ַך××עך׀××š× ××¢××. × ×××Ö·×× ×¢×š×Ö·×××××× (CVE-2019-2130) ××× ×š×××Ö·×××× ××× ×Ö·× ×ך××× ×¡×ס××¢× ×§×Ö·××€ÖŒ×Öž×× ×Ö·× ×¥ ×××֞ס ×§×¢× ××Öž×× ×§×Öž× ××ך××€×ך×× × ××× ×¢××¢×××Ö·××¢× ×€ÖŒ×š××××××Ö·××ש×Ö·× ×××¢× ×€ÖŒ×š×ַסעס×× × ×¡×€ÖŒ×¢×Š××¢× ×§×š×Ö·×€××¢× PAC ×עקעס.
×ק×ך: opennet.ru