Major security vulnerability discovered in Motorola bootloader - Moto G4 Play Guides, News, & Discussion

Seems like this may be able to be exploited for those with G4 Play variants with encrypted bootloaders (Verizon and Amazon models)
https://alephsecurity.com/2017/06/07/initroot-moto/
https://www.xda-developers.com/moto...a-root-shell-patched-in-mays-security-update/
Confirmed working on Moto G4, Moto G5 and Nexus 6!!!!

I'm hoping

Could this mean custom rom for $50 verizon g4 play and it magically unlocks gsm that was secretly there all along?

mrw187 said:
Could this mean custom rom for $50 verizon g4 play and it magically unlocks gsm that was secretly there all along?
Click to expand...
Click to collapse
That is 100% exactly what it means. We just need a dev who understands how to utilize the exploit for g4 play before the may security update is pushed out to us.
As for gsm, an unlocked bootloader would allow you to flash a radio which supports gsm.....IN THEORY.

Related

[Q] Locked bootloader?

I'm contemplating the idea of pre-ordering the X on Verizon because I love Moto's build quality. I had a Razr Maxx for a while and I loved the phone and, of course, the battery life. The only thing that really killed it for me was the locked bootloader. Has there been any word on whether or not it'll be locked on the VZW version? I'm hoping that since Google now owns Moto they'll allow the option to unlock it.
Lockett said:
I'm contemplating the idea of pre-ordering the X on Verizon because I love Moto's build quality. I had a Razr Maxx for a while and I loved the phone and, of course, the battery life. The only thing that really killed it for me was the locked bootloader. Has there been any word on whether or not it'll be locked on the VZW version? I'm hoping that since Google now owns Moto they'll allow the option to unlock it.
Click to expand...
Click to collapse
Verizon Retail and AT&T Retail are locked. All other variants are unlockable, including a Verizon Developer Edition and North American Developer Edition.
mattlgroff said:
Verizon Retail and AT&T Retail are locked. All other variants are unlockable, including a Verizon Developer Edition and North American Developer Edition.
Click to expand...
Click to collapse
Ahh that's what I figured would happen. They did the same thing with Razr's.
I saw this option to unlock the bootloader, through Motorola's Developer page. But it seems that if you unlocked the bootloader, you're forgoing the warranty on the device.
hidea said:
I saw this option to unlock the bootloader, through Motorola's Developer page. But it seems that if you unlocked the bootloader, you're forgoing the warranty on the device.
Click to expand...
Click to collapse
That's how it is with any device, such as the Galaxy Nexus. I'm sure someone will come up with a program to root/unlock and unroot/lock.

Question about purchasing Moto X from Motorola or..

from the At&t store off contract. Now at the motorola online store its 399 and at att its 529? Shoulnt Att lower their price to match?
Also was considering the htc one mini or even the nexus 5, but somehow at 399 with customization and free chromecast I wouldnt mind waiting the 5 days for delivery. Did anyone prefer the htc one mini or even the nexus 5 over the moto x?
I already have an lg g2 and would like something smaller with good battery life as well.
I guess last question, from what I'm seeing rooting is easy but can you unlock the bootloader? Xposed frameworks working ok?
SysAdmNj said:
from the At&t store off contract. Now at the motorola online store its 399 and at att its 529? Shoulnt Att lower their price to match?
Also was considering the htc one mini or even the nexus 5, but somehow at 399 with customization and free chromecast I wouldnt mind waiting the 5 days for delivery. Did anyone prefer the htc one mini or even the nexus 5 over the moto x?
I already have an lg g2 and would like something smaller with good battery life as well.
I guess last question, from what I'm seeing rooting is easy but can you unlock the bootloader? Xposed frameworks working ok?
Click to expand...
Click to collapse
I can't really speak to anything AT&T related, but I just bought a Moto X from Google. I elected to purchase the Developer Edition, because the bootloader can be unlocked. From what I understand, there is still a bounty to unlock the bootloader for non-dev devices. If the price from Google is lower than AT&T, then there really isn't any reason to buy it from them.
I'm running a custom rom, and the Xposed framework is functioning flawlessly.
mtpease said:
I can't really speak to anything AT&T related, but I just bought a Moto X from Google. I elected to purchase the Developer Edition, because the bootloader can be unlocked. From what I understand, there is still a bounty to unlock the bootloader for non-dev devices. If the price from Google is lower than AT&T, then there really isn't any reason to buy it from them.
I'm running a custom rom, and the Xposed framework is functioning flawlessly.
Click to expand...
Click to collapse
Are non dev editions able to root and flash custom roms somehow?
SysAdmNj said:
Are non dev editions able to root and flash custom roms somehow?
Click to expand...
Click to collapse
Sort of. The non-dev models can't install a custom recovery at the bootloader via fastboot, but there is a work around.
You can root using the tool on this page:
http://forum.xda-developers.com/showthread.php?t=2477132
After rooting, you can install safestrap, which is a custom recovery tool used to install roms. It doesn't replace the stock recovery image, but it does work to flash roms.
Xposed + GravityBox (and other modules) negates, for the most part, the need for custom roms.
If I had it to do all over again I'd buy a moto maker T-Mobile phone. It's sim unlocked, works on at&t lte and you can unlock the bootloader.
nhizzat said:
Xposed + GravityBox (and other modules) negates, for the most part, the need for custom roms.
Click to expand...
Click to collapse
Where's the fun in that?
This is not a tinkerer phone.

[Q] moto X dev or moto X

What the different with the Moto X dev ed and the moto X you like get from att?If i got the Moto X dev ed will it come with a hotspot software or would i need to make my own for android?
I bait new when it come with things like unlocked phone.i hope someone can help me
perlsyntax said:
What the different with the Moto X dev ed and the moto X you like get from att?If i got the Moto X dev ed will it come with a hotspot software or would i need to make my own for android?
I bait new when it come with things like unlocked phone.i hope someone can help me
Click to expand...
Click to collapse
DEV Editions have unlockable bootloaders without voiding the warranty. An unlockable bootloader allows you to flash a recovery not signed by Motorola (like TWRP or CWM) which will allow you to flash root and other .zips.
Non-dev editions on AT&T do not have the ability to unlock the bootloader.
tcrews said:
DEV Editions have unlockable bootloaders without voiding the warranty. An unlockable bootloader allows you to flash a recovery not signed by Motorola (like TWRP or CWM) which will allow you to flash root and other .zips.
Non-dev editions on AT&T do not have the ability to unlock the bootloader.
Click to expand...
Click to collapse
So take it i have to make my own hotspot software for the moto X dev and it will not come with a recovery back to?
No, you'll be able to unlock the bootloader, root and install any of the methods that give the hotspot feature.
perlsyntax said:
What the different with the Moto X dev ed and the moto X you like get from att?If i got the Moto X dev ed will it come with a hotspot software or would i need to make my own for android?
I bait new when it come with things like unlocked phone.i hope someone can help me
Click to expand...
Click to collapse
I'm going to copy/paste what I typed here ->http://forum.xda-developers.com/showpost.php?p=52359376&postcount=13 as it definitely answers your question.
KidJoe said:
im going to repeat what has been said by me and others in the countless threads asking this same question....
The two developer edition moto X's come in black face, woven white back, with silver accents (buttons and ring around camera), and say Developer Edition on back. They only come as 32 gig. When it comes to unlocking the bootloader, you can get the code from moto for free, and it does not void your warranty. Once the bootloader is unlocked you can install 3rd party recovery, root, or install 3rd party roms (by 3rd party, I mean non-moto)
The retail x comes as black face, woven black back, and silver accents, or white face, woven white back, and silver accents. Moto Maker can be customized. These come as 32 or 16 gig.
I'm not going to go into the reasons why, but Moto does NOT give out the bootloader unlock code for the Retail and MotoMaker X for Verizon, ATT and a few other carriers.
When it comes to hardware, the GSM Developer Edition (XT1053) is the same as the T-Mobile or Carrier Unlocked/Unbranded (XT1053) and uses the same ROMs. The big difference is getting the unlock code from Moto for the non-dev edition voids the warranty. When it comes to the (CDMA) Developer Edition X for Verizon, they too are identical hardware, but as said, you can't get the unlock code from Moto unless you have the Dev Ed. (Note: for a brief period, there was a Chinses site selling the codes, but it was shut down and is not presently available. No one knows for sure if it ever will be again)
If they are the exact same price, get the dev edition so you can unlock the bootloader without voiding the warranty.
If you have ATT, know that their X is the XT1058, you can not get its bootloader unlock code from Moto. More importantly, by specs it supports 2 additional LTE bands (originally said to only be used outside the USA, but lately there has been talk that ATT is using one of them in the USA now), but does not support HSPA on AWS (used by t-mobile for non-LTE 4g, but t-mobile has been reframing their 1900 from 2g to HSPA in some areas). So if you have AT&T but got the gsm dev, you'd be at risk if ATT starts fully using one or both of those "other" LTE bands in the USA in the future.
As for why unlock the bootloader, what would the average Joe gain by it? See -> http://mark.cdmaforums.com/MotoX-Locked.html
Click to expand...
Click to collapse
As for "hot spot"... There is hotspot software in the X ROM. Since the gsm Dev uses the T-Mobile rom, it might work as is on ATT without modifications. You'll have to look that up. But there are other options to remove any "entitlement" checks (there are threads about it) or you can use WiFi tether when the Dev Edition is rooted.
I like developer. I think developer option has better opportunity than others.
KidJoe said:
I'm going to copy/paste what I typed here ->http://forum.xda-developers.com/showpost.php?p=52359376&postcount=13 as it definitely answers your question.
As for "hot spot"... There is hotspot software in the X ROM. Since the gsm Dev uses the T-Mobile rom, it might work as is on ATT without modifications. You'll have to look that up. But there are other options to remove any "entitlement" checks (there are threads about it) or you can use WiFi tether when the Dev Edition is rooted.
Click to expand...
Click to collapse
thank for the information

[Q] Which Moto X's receive updates from Motorola?

I'm looking to buy a used Moto X, and am trying to figure out which Moto X's receive updates from Motorola and not a carrier. I need a GSM phone and will be using a TMobile or AT&T MVNO in the US. I don't trust the carriers to continue pushing out Motorola's updates, so I'd rather just get them from Motorola directly.
My understanding is that the new dev versions and the retail, full-priced versions from Motorola will get updates. How do I identify those on the secondary market? Is it as simple as - if the back doesn't have a carrier logo, it gets updates from Motorola? Should I only be looking for an XT1053 and not an XT1058?
Looked in the FAQs and searched, but couldn't find an answer.
Thanks!
I could be wrong, but I don't think any of them get the update OTA straight from motorola. Even the dev and unlocked GSM's roms are labeled as T-Mobile retail. However, if you have one of those devices and an unlocked bootloader, you can download the system images straight from moto's website and easily install the updates yourself. So either version works in your case. The only difference is that you lose your warranty if you don't have a dev edition.
Sent from my XT1053 using XDA Free mobile app
That Ain't Falco!!! said:
I could be wrong, but I don't think any of them get the update OTA straight from motorola. Even the dev and unlocked GSM's roms are labeled as T-Mobile retail. However, if you have one of those devices and an unlocked bootloader, you can download the system images straight from moto's website and easily install the updates yourself. So either version works in your case. The only difference is that you lose your warranty if you don't have a dev edition.
Sent from my XT1053 using XDA Free mobile app
Click to expand...
Click to collapse
Thanks for the answer. So, theoretically, it wouldn't matter which device I got. Good to know. Thanks!
511pf said:
I'm looking to buy a used Moto X, and am trying to figure out which Moto X's receive updates from Motorola and not a carrier. I need a GSM phone and will be using a TMobile or AT&T MVNO in the US. I don't trust the carriers to continue pushing out Motorola's updates, so I'd rather just get them from Motorola directly.
My understanding is that the new dev versions and the retail, full-priced versions from Motorola will get updates. How do I identify those on the secondary market? Is it as simple as - if the back doesn't have a carrier logo, it gets updates from Motorola? Should I only be looking for an XT1053 and not an XT1058?
Looked in the FAQs and searched, but couldn't find an answer.
Thanks!
Click to expand...
Click to collapse
If you want to be able to use your phone on multiple carriers, definitely buy the XT1053.
The XT1053 comes bootloader-unlockable and sim-unlocked. If you buy the XT1058 AT&T variant, the bootloader cannot be unlocked (unless you are lucky enough to get a code from the china middleman), and the phones are SIM-Locked to AT&T (unusable on T-Mobile). Some have reported success getting a SIM-Unlock code from online sellers, but others have reported that they tried all of the online sellers and none of the unlock codes work.
If you want a phone that will 100% be usable on any GSM carrier, buy the XT1053.
All variants should [eventually] receive the updates.
Don't know about XT1053 but I got the XT1052 and it came with unlock-able bootloader too, and of course all GSM SIM cards are working.
511pf said:
I need a GSM phone and will be using a TMobile or AT&T MVNO in the US.
Click to expand...
Click to collapse
In addition to what That Ain't Falco!!! said..
The ATT XT1058 doesn't support HSPA/HSPA+ on AWS(1700/2100mhz). When T-Mobile first launched their HSPA/HSPA+ network that is the frequency they used. While they are working to upgrade and re-farm their 1900Mhz spectrum to HSPA/HSPA+, in areas where they haven't yet completed that, the XT1058 would only get EDGE when using it on T-Mobile
While the GSM Unlocked XT1053 is sim unlocked out of the box and bootloader unlockable, unlocking the bootloader does void the warranty. The Dev Edition XT1053 can't be customized (comes as 32gig, black face, woven white back, silver accents and says Dev Edition on the back), but unlocking the bootloader does NOT void the warranty. But in reality, the hardware "inside" is exactly the same, and they use the same roms/updates.
If you want to root, its easiest/best if you can unlock the bootloader.
Great answers, guys. Thanks a ton for taking the time. I'm definitely going to look for the XT1053.

Is there a way to unlock bootloader without getting the code from moto website??

Is there a way to unlock bootloader without getting the code from moto website because they track all the unlock codes which they give..
No...
Is it possible now? Like via 3th party middleman?
hamtar0 said:
Is it possible now? Like via 3th party middleman?
Click to expand...
Click to collapse
For the Moto G 2013, yes. See http://theroot.ninja/ Must be running 4.4.3 or earlier.
For the Moto G 2014, no, but you can try it if your running 4.4.3 or earlier.
Frankly, if Motorola lets you unlock the phone then count yourself lucky, as many of the Moto G's out there
are carrier-bootloader restricted and will never be unlockable unless enough people scream at the FCC.
tmittelstaedt said:
For the Moto G 2013, yes. See http://theroot.ninja/ Must be running 4.4.3 or earlier.
For the Moto G 2014, no, but you can try it if your running 4.4.3 or earlier.
Frankly, if Motorola lets you unlock the phone then count yourself lucky, as many of the Moto G's out there
are carrier-bootloader restricted and will never be unlockable unless enough people scream at the FCC.
Click to expand...
Click to collapse
Carrier locked even when purchased directly from Motorola?
r_diaz13 said:
Carrier locked even when purchased directly from Motorola?
Click to expand...
Click to collapse
Carrier locked phones are purchased from carriers
Android The Greek said:
Carrier locked phones are purchased from carriers
Click to expand...
Click to collapse
OK let me be as clear as I can on my wording:
"carrier locking" is slang for 2 ways carriers have of locking phones. First is network locking. Second is bootloader locking.
Network locking means you can't walk into Walmart and buy a Boost Moto G Prepaid phone for $60 and
then replace the SIM card with your ATT Mobile card and start using it. You will have to obtain a network unlock
code from Boost. In the United States the FCC mandated last year that all cell carriers must permit network
unlocking after the subsidized price of the phone was paid for. (generally a year) You will generally have to supply the MEID
or IMEI of the phone to the carrier, and the carrier won't network unlock phones that were reported stolen to
them or where the owner is owning money. There are companies on the Internet that claim to supply unlock
codes, some for free, some they charge. YMMV. There's hardware unlock code calculators you can buy for
a couple hundred bucks. Typically, network unlocking is more important for GSM phones (or phones that are
dual GSM/CDMA) since even in the United States, few cell carriers use CDMA, so a network unlocked Moto G
that is CDMA is kind of a mental exercise more than anything else.
Bootloader locking was dreamed up to prevent evil crackers from writing viruses and such that will get on your
phone and hijack it for some nefarious purpose. Basically all Moto G's are sold with locked bootloaders no
matter who you buy them from. Unfortunately, bootloader locking is being abused by many carriers to
prevent people from booting unsigned code on their own phones. (ie: rooted phones) I don't know about Boost but I do know
Verizon makes Motorola lock the bootloaders of all phones that Verizon buys to sell through the Verizon
store, and through places like Walmart, etc. and will not allow Motorola to unlock bootloaders.
In the United States most people buy carrier subsidized phones from retail stores for under $100 because most
of them don't understand that paying an extra $20 a month for 2 years is more expensive than saving
$200 on a cell phone.
For the price of this phone, . I don't see why people don't just buy straight from Moto and just get the code from them. I got both a Moto X 2013 and the Moto G 2014 from Moto directly. Best experience ever

Categories

Resources