New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
MT6789 boot rom #932
Comments
Wow. we still can hope for MT6789 . Thanks #758 |
I managed to get a bootrom backup. but it is not like the previous bootroms. This is an exploit from bootrom, only @bkerler can fix it |
from which device you extracted it? |
Xiaomi Poco M5 (rock) |
Good work! I am researching brom_v6 on RMX3630 now. Can you send how to get brom dump on V6 devices? Probably, there are |
MT6789 is affected by these recent ones CVE-2024-20005 ( EoP da ) this is not exhaustive list but I think these are more relevant |
da related but mt6789 may not be affected by all |
None of these affects the bootrom nor da1. Da2 is useless without da1 signed loaders which aren't available. |
@bkerler any luck with mt6789 brom dump? this tool might be helpful in detection of CWE-787 etc |
i have same device but it's not possible to extract bootrom from it as it has SLA DAA SBC etc all enabled I want to understand the process you followed to extract it !!! |
@bkerler bro atleast please can you share Brom dump if you have extracted it from your GIGASET GX4 |
We almost succeeded to made an engineering rom for our device Poco M5 & Redmi 11 Prime 4G (Rock). Now we can unbrick our device without mi auth. But, we have to flash patched preloader.bin ‘including some other images/files’ before brick our device. (We made a script for it). It's still in experimental conditions, not public yet. #757 |
CVE-2024-20056 ( EoP preloader ) affects Mt6789 @bkerler can it be helpful in dumping brom check here for more https://github.com/advisories?query=preloader+mediatek |
brom_v6_1208.zip
The text was updated successfully, but these errors were encountered: