zlacker
[return to "Delayed Security Patches for AOSP (Android Open Source Project)"]
◧
1. gessha+Xl
[view]
[source]
2025-09-07 16:55:56
>>transp+(OP)
> We want to make sure that if you download an app from a developer, regardless of where you get it, it's actually from them. That's it.
In what scenario is this a serious threat because I can't think of any.
◧◩
2. charci+bm
[view]
[source]
2025-09-07 16:57:30
>>gessha+Xl
It sounds like EV certificates, and it turned out that in practice no one cared about id verification.
◧◩◪
3. gessha+MP3
[view]
[source]
2025-09-08 20:06:18
>>charci+bm
This feels like an airplane bullet hole example.
[go to top]