Hello everyone, I’m new here and I’ve got a fairly serious question/problem.

I’ve used Bromite for a long time, and now with the threat of CVE-2023-4863, I can’t help but constantly fear getting screwed over by a malicious image. I’ve tried looking myself but cannot find an answer if bromite is vulnerable to this threat, mostly because the main developer of the browser hasn’t been active for a very long time.

I’d love to switch to another browser but to transfer all my data would require root access, which could damage my pixel 6. So I’m kinda stuck in a jam.

Can anyone please help me?

  • Moonrise2473@feddit.it
    link
    fedilink
    English
    arrow-up
    6
    ·
    edit-2
    1 year ago

    Unfortunately browsers need at least a monthly security update. Bromite doesn’t have a commit since January, so it’s dead. And the last release is from December. Even if for some reason it didn’t have that specific webp vulnerability, it has 11 months of other security issues. You must stop using it immediately right now

    For a browser there’s no data to transfer except the few bookmarks and the opened tabs (you aren’t using a dead browser with no sync as your only password manager, right?). Install a new browser, then share the bookmarks and tabs one by one.

    I don’t understand how root can break your Pixel (it doesn’t void warranty) but anyway unlocking the bootloader for rooting requires a full wipe and all you can get is a config database that could only be used with bromite (or forks, if they didn’t change too much)

    For your next browser choose one that has hundreds of devs as staying behind updates is a massive task and a small team (or a single person) like the one behind bromite can easily burnout and disappear overnight.

    • MikeyBe@lemdro.idOP
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      Thank you for your reply, I don’t look forward to transferring things over one by one, but it is a better idea than me just Freaking out. As for worrying about breaking my phone, I do not consider myself very smart, so reading that there is a chance that rooting your phone can brick it scares me.

      As for a password manager, I’m not completely stupid, I use an offline app which is updated fairly regularly and is quite secure.

      sigh Guess I’d better get to working on this sooner rather than later. Thank you again for your reply.