Project News

Occasional updates about DivestOS.
(Upcoming News)

November 9th 2021 Update

System Updates

  • 15.1 release candidate #3 November ASB builds were published on November 9th.

November 8th 2021 Update

System Updates

  • 18.1 release candidate #2 November ASB builds were published on November 7th.
  • 14.1, 16.0, and 17.1 release candidate #2 November ASB builds were published on November 6th.
  • [upstream] Updated to October ASB.
  • 15.1 rebuilds were published on November 5th and 6th. They do not contain November ASB patches.
  • The per-app sensors permission patches have been disabled on 14.1, 15.1 and 16.0 due to breakage in select cases.
  • 14.1 release candidate #1 November ASB builds were published on November 3rd.
  • AVB2.0 devices had an AVB1.0 flag set likely preventing boot.
  • Many AVB1.0 devices turned out to not be enforcing, now fixed.
  • Verifed boot enablement has been overhauled.
  • The script used to change the default DNS has been expanded to cover more files.
  • The `Private DNS` menu of the Settings app on 17.1+ now includes thirteen presets for various DNS providers. Based off of work by CalyxOS.
  • Firmware inclusion has been disabled for select devices, pending update and re-enablement.
  • The included HOSTS file has been further reduced in size after making our wildcard optimizer more thorough.
  • There have been many new kernel CVE patches as usual.

Workspace Updates

  • All scripts have been verified working as intended.
  • Various script fixes.
  • Scripts will now fail loudly.
  • Some patches had minor adjustments to them for `git am` correctness.
  • A non-critical patch was found to not have been applied due to a typo.
  • Patches are now refreshed on apply.
  • Patches are now applied via a helper function based on `git am` instead of `patch -p1 <`.
  • Workspace reset function has been made more thorough.
  • All branches have been deleted and re-downloaded.
  • Manifests have been trimmed.
  • 11.0/KitKat support has been removed.

Device Updates

  • The recovery firmware extraction script has been tested working on clark after resolving SELinux denials. Likely also fixes osprey and surnia.
  • z2_plus has been moved to 18.1, untested.
  • The enchilada/fajita kernel has been updated to 4.9.277 from 4.9.227.

Roster Updates

  • kccat6, lentislte, land, and santoni 16.0 builds are now available, untested.
  • apollo 14.1 builds are now available, untested.

App Updates

  • Updated Mull to 94.1.0 and 94.1.1, has 13 security fixes.
  • Updated Mulch (WebView) to Chromium 95.0.4638.50-1 and 95.0.4638.74-1, has 19 and 9 security fixes respectively.

Website Updates

  • The patch levels page now has direct links to kernel CVE patchers.

Other Updates

  • Google has finally stopped supporting Linux 3.18, resulting in a grand total of 339 additional CVE patches after official support ended.

October 11th 2021 Update

System Updates

  • 18.1 October ASB builds were published on October 10th.
  • 14.1, 15.1, 16.0, and 17.1 release candidate #1 October ASB builds were published on October 7th.
  • [upstream] Updated to October ASB.
  • A new `Support` app is included with links to common resources. git repository
  • 17.1 rebuilds were published on October 3rd.
  • 14.1, 15.1, and 16.0 rebuilds were published on October 2nd.
  • 18.1 had full wildcard hosts support fixed after more testing.
  • DivestOS now includes its own WebView build named Mulch. Previously DivestOS depended on the LineageOS WebView. However this limited how quickly we could release security updates and prevented our ability to disable various anti-features in Chromium. Mulch is largely based off of and will track closely the Vanadium browser from GrapheneOS. A standalone version of Mulch is also available to all Android users on our F-Droid repository. git repository
  • 17.1 and 18.1 now feature a quick settings tile to globally block all apps from accessing the camera, microphones, and sensors.
  • All versions now have an option to disable sensors on a per-app basis, thanks to @MSe1969
  • All 3.4 devices have received numerous (3-30) prima (Wi-Fi driver) related security patches.
  • hardenDefconfig function has been reworked to better ensure all changes are made to all devices. Previously there were some cases where changes were only partially applied.
  • It has been shown some devices have an extremely long command line passed to the kernel by the bootloader. The hardenBootArgs function excerbated this issue and caused some devices to not boot. It has now been shortened dramatically.
  • The hamper analytics patches have been fixed after converting the booleans to strings.

Device Updates

  • i9100 has fallen behind due to space constraints.
  • Bluetooth on thor has likely been fixed.
  • klte build 20210913 had a broken recovery due to kernel commandline. If installed, you will need to manually update. Steps here

App Updates

  • Updated Mulch (WebView) to Chromium 94.0.4606.71-3 and 94.0.4606.80-1, has 4 and 4 security fixes respectively.
  • Updated Mull to 93.1.0, has 8 security fixes.
  • [upstream] Updated WebView to Chromium 94.0.4606.61, has 1 security fix. commit
  • Hypatia 2.22 was released, mostly internal changes, and should be much more responsive.
  • [upstream] Updated WebView to Chromium 93.0.4577.82, has 10 security fixes. commit

Website Updates

  • The Patch Levels page now details the number of proprietary blobs each device includes and has removed.
  • Credits section has been made more readable

September 14th 2021 Update

System Updates

  • 18.1 September ASB builds were published on September 13th and 14th.
  • 14.1, 15.1, 16.0, and 17.1 release candidate #3 September ASB builds were published on September 12th.
  • slub_nomerge has been enabled for pre 3.18 kernels, providing some of the slab_nomerge benefits.
  • PROC_PAGE_MONITOR is no longer disabled, fixing app and service memory stats (eg. previously 0B shown in Settings).
  • 14.1 and 15.1 release candidate #2 September ASB builds were published on September 12th.
  • [upstream] The APN list has been updated, especially many changes for carriers in China.
  • 14.1 and 15.1 release candidate #1 September ASB builds were published on September 9th.
  • [upstream] Updated to September ASB.
  • There have been many new kernel CVE patches as usual.
  • TalkBack is now included on all versions. This is thanks to our work removing its proprietary blobs back in July and the subsequent upstreaming to F-Droid. Notably it is the first libre-build featuring the Braille keyboard.
  • The included HOSTS list for blocking ads/trackers has now been optimized using wildcards.
  • Wildcard HOSTS support has been backported from 16.0 branch to 14.1 and 15.1.
  • [upstream] Updated WebView to Chromium 92.0.4515.159, has 9 security fixes. commit

Device Updates

  • Camera on taimen and walleye is fixed.

Roster Updates

  • vayu 18.1 builds are now available, untested.
  • davinci 17.1 builds are now available, untested.
  • surnia builds are now available, tested working.
  • sunfish, bramble, and redfin 18.1 builds are now available, untested.
  • beryllium, lmi, and alioth 18.1 builds are now available, untested.

App Updates

  • Updated Mull to 91.1.0, 91.2.0, and 92.1.1, has 11, 1, and 5 security fixes respectively.
  • Hypatia had a bug fix to identify multiple files with the same hashes (inverted hashmap).

Website Updates

  • The messengers page now details offline message support and multiple device support.
  • The screenshots page has been overhauled.
  • Many refinements to the device downloads page:
    • Device names have been refined.
    • Update check counts are now shown for each device.
    • Fuzzy dates for images are now shown for each device.

Other Updates

  • The privacy policy has been updated to better comply with GDPR regulations.
  • An F-Droid repository for serving system WebView updates out-of-band is now included. You might need to manually add it.

August 7th 2021 Update

System Updates

  • 18.1 August ASB builds were published on August 7th.
  • 14.1, 15.1, 16.0, and 17.1 August ASB builds were published on August 6th.
  • [upstream] Updated to August ASB.
  • [upstream] Updated WebView to Chromium 92.0.4515.131, has 10 security fixes. commit
  • 14.1 release candidate #1 August ASB builds were published on August 4th.
  • A path quoting issue in the CVE patcher was fixed that now allows correctly applying alternate root patches. Now fixed, many devices have received a fair number of added patches. Alternate root patches are primarily used for the Qualcomm Wi-Fi drivers.
  • [upstream] Updated WebView to Chromium 92.0.4515.115, has 35 security fixes. commit

Device Updates

  • LTE (band 4) support for mako was enabled if using a hybrid modem. Tested working with and without hybrid modem.

Roster Updates

  • osprey has been moved to 17.1, untested.
  • FP3 has been moved to 18.1, untested.

App Updates

  • Updated Mull to 90.1.3.
  • Hypatia now has more detailed database descriptions and a new database source from @botherder.
  • GMaps WV now supports loading addresses shared from other apps thanks to R Raj (@accountForIssues).

Website Updates

  • An effort will be made to better sort News entries by date, most recent first.
  • Technical Details page has been overhauled. Many changes are now documented and easily viewable.
  • Patch Levels page has been overhauled. Device info is now generated automatically. Linux version status is added.

Other Updates

  • Contributions to DivestOS and related projects now require sign-off as per the DCO.

July 20th 2021 Update

System Updates

  • 18.1 rebuilds were published on July 20th.
  • 15.1 rebuilds were published on July 18th.
  • July 13/17th 15.1 builds were missing two security patches compared to 18th.
  • 14.1, 15.1, 16.0, and 17.1 rebuilds were published on July 17th.
  • July 13th 16.0 builds were missing two security patches compared to 17th.
  • [upstream] Updated WebView to Chromium 91.0.4472.164, has 8 security fixes. commit

Roster Updates

  • FP2 has been moved to 18.1, untested.
  • aura, hotdog, and hotdogb 18.1 builds are now available, untested.

July 14th 2021 Update

System Updates

  • 18.1 July ASB builds were published on July 14th.
  • 15.1, 16.0, and 17.1 July ASB builds were published on July 13th.
  • 14.1 July ASB builds were published on July 12th.
  • 14.1 release candidate #1 July ASB builds were published on early July 10th and again later in the day.
  • 14.1, 15.1, 16.0 June rebuilds were published on July 5th.
  • July 5th 14.1 builds had a broken bootanimation due to overzealous optipng.
  • Fallback DNS has been changed from Cloudflare to Quad9.
  • All versions now have an option in the Network section of the Settings app to toggle captive portal checks thanks to @MSe1969.
  • Workspace on build server has been re-initialized, should fix a few subtle issues.
  • A handful of patches from GrapheneOS and CalyxOS have been integrated.
  • There have been a handful of new kernel CVE patches as usual, with over 200 for the 3.4 branch thanks to @haggertk's backports.
  • [upstream] Updated to July ASB.
  • [upstream] Updated WebView to Chromium 91.0.4472.120, has 4 security fixes. commit

Device Updates

  • bonito/sargo for 18.1 are still failing to compile, any assistance appreciated. error: ln: cannot create symbolic link from '/data/vendor/rfs/mpss' to 'out/target/product/bonito/vendor/rfs/msm/mpss//readwrite': No such file or directory
  • taimen has reported camera issues, if anyone can provide a logcat that would be welcomed

Roster Updates

  • serrano 18.1 builds are available

App Updates

  • All but one of our apps are now available on the official F-Droid repository.
  • Updated Mull to 90.1.1 and 90.1.1-2, has 9 security fixes.
  • IR Remote has received a translation into Spanish thanks to Diego Sanguinetti!

June 16th 2021 Update

System Updates

  • 15.1, and 16.0 June ASB builds were published on June 11th.
  • 14.1 and 17.1 June ASB builds were published on June 12th.
  • 18.1 June ASB builds were published on June 15th.
  • There have been a handful of new kernel CVE patches as usual.
  • [upstream] Updated to June ASB.
  • [upstream] Updated WebView to Chromium 91.0.4472.101, has 14 security fixes. commit

Device Updates

  • oneplus2 and ether have been tested booting after amending the deblobber. crackling and kipper are likely also fixed.
  • i9305 SIM detection should be fixed.

App Updates

  • Many of our apps have been submitted for inclusion in F-Droid. Pending approval/merge.
  • Updated Mull to 89.1.1, has 11 security fixes.

Website Updates

  • "Name Your Price" donations are now accepted on the about page via Stripe. For freedom preservation there is a prompt before loading any proprietary JavaScript.

Other Updates

  • It has been one year since the public release of DivestOS!
  • cm-14.1 is likely on its last legs ASB-wise

May 10th 2021 Update

System Updates

  • 14.1, 15.1, and 16.0 May ASB builds were published on May 8th.
  • 17.1 May ASB builds were published on May 9th.
  • 18.1 May ASB builds were published on May 10th.
  • 14.1, 15.1, and 16.0 rebuilds were published on April 15th.
  • 17.1, and 18.1 rebuilds were published on April 16th.
  • Devices using `encryptable=footer` were tested broken with `forceencrypt` again in the previous build cycle. Force encryption will once again only be set for devices with a dedicated encryption metadata partition.
  • There have been a handful of new kernel CVE patches as usual.
  • [upstream] Updated to May ASB.
  • [upstream] Updated WebView to Chromium 90.0.4430.82, has 7 security fixes. commit
  • 18.1 Updater Tor support was fixed.

Device Updates

  • cheeseburger/dumpling has finally been fixed on newer releases, likely caused by a stray toolchain. Should hopefully allow other similar devices to boot too.
  • Firmware repository has been updated and now supports 28 devices.

App Updates

  • Updated Mull to 88.1.1 and 88.1.3, has 14 and 2 security fixes respectively.
  • Hypatia on Android 11 was fixed.
  • GMaps WV has received support for Google Consent handling.
  • Hypatia received a translation into Russian thanks to @q1011!

Website Updates

  • The website has been relicensed from GPL-3.0 to AGPL-3.0 for better freedom assurance.

April 13th 2021 Update

System Updates

  • 17.1 March rebuilds were published on April 2nd.
  • 14.1, 15.1, and 16.0 April ASB builds were published on April 11th.
  • 17.1 April ASB builds were published on April 12th.
  • 18.1 April ASB builds were published on April 13th.
  • [upstream] 18.1 branch has been marked as stable by LineageOS.
  • [upstream] Updated to April ASB.
  • 18.1 builds have begun for many devices.
  • 17.1 recovery has been updated to latest after utilizing rebranding work from 18.1 branch.
  • 17.1 and 18.1 include SeedVault for creating and restoring encrypted backups of app data. A USB OTG cable/adapter and flash drive is strongly recommended.
  • Experimental 18.1 builds before 04/06 for klte, bacon, and mako had broken recoveries. For klte please flash latest recovery via heimdall. For bacon/mako flash latest recovery via fastboot if unlocked. During testing it was discovered that it is impossible to unlock bacon once locked with an AOSP recovery flashed. A signed factory recovery for bacon can be provided if you've locked yours.
  • eSpeak-NG has replaced PicoTTS in 18.1 builds for the system text-to-speech provider.

Device Updates

  • Fenix based browsers were fixed on flo and hammerhead.
  • Sensors have been fixed on flox 17.1+.
  • In-place upgrade to 18.1 has been tested working on the following devices: mata, klte
  • The following devices cannot be in-place upgraded to 18.1 and must be wiped: bacon, clark, crackling, d852, d855, flox, fp2, m8, mako, shamu, victara.

Roster Updates

  • Many devices have been moved to 18.1 and dropped from 17.1.
  • avicii 17.1 builds are available (untested).
  • axon7 15.1 builds are available (untested).

App Updates

  • Updated Mull to 87.0.0, has 10 security fixes.
  • MergedWiFiNLP had updates to support newer Android versions and added a database import file picker.

Website Updates

  • A unified script has been made for handling device downloads page metadata.
  • There are two new device statuses: "mostly works" and "likely works".

March 25th 2021 Update

System Updates

  • 15.1 rebuilds were published on March 14th with a patch for CVE-2019-2033.
  • 14.1, 15.1, and 16.0 rebuilds were published between the 24th and 25th.
  • Support for building on top of LineageOS 18.1 was added.
  • Scripts have been fixed to only include Silence on devices that support SMS.
  • Tweaks have been made to reduce RAM usage on devices with less than 2GB of RAM. Some of these tweaks cause graphical artifacts.
  • There have been a handful of new kernel CVE patches as usual.
  • [upstream] Updated WebView to Chromium 89.0.4389.105, has 5 security fixes. commit

Device Updates

  • dragon has been fixed and tested working on 15.1.

Roster Updates

  • Experimental 18.1 builds have been made available for select devices. More will be available and switched out once LineageOS marks 18.1 as stable.
  • FP3 17.1 builds are available (untested).
  • m7 14.1 builds are available (untested).
  • Users on flo 15.1 are urged to repartition to flox 17.1+.
  • Users on mako 15.1/16.0 are urged to repartition to mako 17.1.
  • Many devices had support dropped from old versions if they compile for newer versions to reduce maintenance burden.

App Updates

  • Hypatia received a full translation into Italian thanks to @dantecpu and Petra Mirelli!
  • Hypatia and Extirpater received a translation into Portuguese thanks to @inkhorn!
  • Hypatia received an initial translation into Spanish thanks to Petra Mirelli!

March 8th 2021 Update

System Updates

  • March ASB builds were released between the 5th and 8th.
  • There have been a handful of new kernel CVE patches as usual.
  • [upstream] Updated to March ASB.
  • [upstream] Updated WebView to Chromium 89.0.4389.72, has 47 security fixes. commit

Device Updates

  • cheryl now has verified boot support enabled after being missed.

Roster Updates

  • mako 16.0 will likely be dropped due to space requirements. Any users should repartition and update to 17.1.

App Updates

  • Updated Mull to 86.1.1, has 12 security fixes.
  • Hypatia received a handful of bug fixes and necessary improvements.
  • Hypatia was translated into French thanks to Jean-Luc Tibaux and Petra Mirelli.
  • All F-Droid services had the .onion addresses added as available mirrors.
  • All F-Droid repos were upgraded to use 'fdroidserver' 2.0.
  • Hypatia now has translated app descriptions on F-Droid.
  • Extirpater, GMaps WV, MergedWifiNLP, and MotionLock all had their dependencies updated.

Website Updates

  • 'Device downloads' has gained per-device bootloader unlocking, relocking, and verified boot information.
  • AVB public keys are now available for all supported devices on the 'Device downloads' page.
  • 'Bootloader Unlocking' page received many refinements.
  • 'Browser Tables' page received some additions.
  • 'Device downloads' page now loads faster by reusing connection to the Redis instance.
  • Website should now be indexed by search engines, after removing 'robots' flags.
  • More information on donating was added.

Other Updates

  • GitHub and GitLab repositories were cleaned up (disabled unused features, labels added).

February 12th 2021 Update

System Updates

  • February ASB builds were released between the 6th and 8th.
  • Over 30 CVE patches for 3.10 were added. import and update
  • There have been many new kernel CVE patches as usual.
  • [upstream] Updated to February ASB.
  • [upstream] Updated WebView to Chromium 88.0.4324.152, has 1 security fix. commit

Roster Updates

  • starlte and star2lte have been dropped due to being broken.

App Updates

  • Hypatia was translated into German by Petra Mirelli. link
  • Updated Mull to 85.1.2, has 1 security fix.
  • Petra Mirelli also made an F-Droid banner graphic for Hypatia. link
  • F-Droid banner graphics were also created for Mull and Extirpater.
  • F-Droid screenshots were added for Mull, Hypatia, and Extirpater.

Website Updates

  • The 'recommended apps' page had some additions. commit
  • The 'screenshots' page had some updates. commit

January 26th 2021 Update

System Updates

  • January ASB builds were released between the 10th and 14th.
  • Rebuilds were published on the 24th thru 26th primarily for CVE patcher updates.
  • IMS/VoLTE was made working on supported devices. image
  • CNE was removed after being briefly included in the Dec/Jan builds. This removal breaks Wi-Fi calling, but is likely worth the security benefits.
  • The deblobber received tweaks to better handle more property edits. commit
  • Part two of the Debian/retired Linux CVE import was completed. Linux 3.0, 3.4, and 3.10 devices benefit the most from this, averaging between 10 and 90 added CVE patches. import and update
  • The exec-based spawning feature from GrapheneOS was disabled. We likely failed to port it over correctly and the result is many subtle breakages.
  • All versions now include the LineageOS 17.1 APN list for better cell carrier compatibility. commit
  • All versions were mostly patched against the old CVE-2019-2306. commit
  • umask is now explicitly set in the build scripts and many files had their permissions corrected. This fixes many subtle issues.
  • [upstream] Updated to January ASB.
  • [upstream] Updated WebView to Chromium 88.0.4324.93, has 36 security fixes. commit

Device Updates

  • mata has long-standing audio issues, Lineage team has been trying to fix them. Currently the earpiece speaker works on calls, but the loud speaker cannot have its volume adjusted.
  • The microphone issue on shamu was resolved, was caused by our removal of some voice recognition blobs (which are required for adspd bring-up). commit
  • bullhead now installs (and works) after removing the firmware images to workaround the missing proprietary additions needed for their flashing. related

Roster Updates

  • mako was re-enabled for 16.0 for users who do not want to re-partition their device.
  • flo was re-enabled for 15.1, for users who do not want to re-partition their device.
  • mako was re-enabled for 15.1 for testing purposes.
  • hammerhead was re-enabled for 15.1 due to Bluetooth issues in 16.0.
  • ether and shamu were re-enabled for 15.1 as they are the last versions with working IMS.
  • star2lte was added to 17.1 and was tested broken, likely due to its usage of stock vendor.img.

App Updates

  • Updated Mull to 84.1.2, 84.1.4 and 85.1.0, has 0, 1, and 13 security fixes respectively.
  • Hypatia had some commits forward-ported from the stable branch to the unfinished dev branch. git log
  • The PrebuiltApps repository saw a handful of app updates. git log

Website Updates

  • The device downloads page now supports serving multiple build versions per device. commit
  • A 'news' page was added for changelogs and project history. commit
  • A 'network connections' page was added for documenting connections made by the system. commit
  • Pages with tables were fixed up for mobile.
  • The 'recommended apps' page had some additions. commit
  • The 'messengers' page received some needed updates.
  • The credits and legal notices section of the 'about' page was updated.
  • Some typos were fixed. commit

Other Updates

December 16th 2020 Update

General Updates

  • November and December ASB builds have been released.
  • Mull is now on its 3rd Fenix based release, with the latest 84.1.0 including 14 security fixes. Huge thanks to @relan for their build scripts. repo link
  • Hypatia has been updated to show database release/update dates in addition to a multi-threading fix.
  • Etar is now used for the calendar app across all versions.
  • A handful of more proprietary blob variants have been removed.
  • Vendor build fingerprints are now all replaced.
  • Lots of miscellaneous fixes and cleanup.
  • All 15.1 builds and higher are now fully dexpreopted, this allows for reduced memory usage and also decreased boot times on FDE devices.
  • TCP SACK is no longer disabled. SACK PANIC has now been patched on nearly all kernels supported. It has valuable bandwidth saving benefits.
  • There have been many new CVE patches, especially for 3.18 kernels.

Roster Updates

  • clark has been updated from 14.1 to 17.1 (potential modem issues). In-place upgrade has been tested to work, but your mileage may vary.
  • flo has been updated from 15.1 to 17.1, but requires re-partitioning.
  • cheeseburger/dumpling are compiling for 17.1, but not booting.
  • coral and flame 17.1 builds are available (untested).
  • rs988 and h990 17.1 builds are available (untested).
  • yellowstone 16.0 builds are available (untested).
  • h870 15.1 builds are available (untested).

Website Updates

  • Paragraphs now have links for easy saving/sharing.
  • Browser, recommended apps, and functionality tables have all been updated.
  • A handful of credit updates.
  • There is now a captcha required to access the device downloads page. It works without JavaScript, and has audio support.
  • There is a new vanity onion address divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion. The old address also still works. tool used
  • Most pages are now cached by the browser.
  • Most text based content served up will now be compressed either by deflate or brotli.

Other things

  • Old DivestOS patches have been used to remove AmbientSDK from Replicant. git tag
  • 3G is starting to be rapidly phased out, meaning calls with most carriers will not be possible unless IMS/VoLTE works on your device.
  • Heads up: LineageOS will most likely be dropping official 16.0 builds once 18.0/18.1 is released.

Future work

  • Test how much breakage the deblobber is causing to the IMS stack, or if that is upstream.
  • Finish importing this
  • Add back AOSP patching support to the CVE patcher. It is undecided how to best implement it.

October 10th 2020 Update

  • Most 3.4 devices should expect 40-100 more kernel CVE patches. git commit
  • Most 3.18 devices should expect 10-40 more kernel CVE patches. git commit
  • A handful of other kernel CVE patches are available for all other devices as per usual.
  • Lots of work has been done on making the CVE patcher easier for other projects to use. repo link
  • Mull is now severely out of date. There hasn't been the time to rebase it. It is strongly suggested to use Bromite or the new Fennec F-Droid until then. Bromite repo is already included in DivestOS F-Droid.
  • victara build failed last month due to recovery image being too large, however it is now once again available.
  • h850 and zenfone3 builds have been pulled as they were last updated in 2018 and 2019 respectively.
  • [upstream] Updated to October security bulletin.
  • [upstream] Updated WebView to Chromium 86.0.4240.75, has 35 security fixes.
  • 11/R builds will likely not be available until March with most devices hopefully being updated by May.

September 1st 2020 Update

  • The CVE patch database now has many more patches thanks to importing data from the Civil Infrastructure Platform CVE tracker.
  • The CVE patcher has had some minor fixes to improve output reliability.
  • There have been some GPS fixes for all branches, will be available in the next rebuilds.
  • Many new (untested) devices: pro1, enchilada, fajita, guacamole, guacamoleb, and broken beryllium.
  • Mull is likely on its last release due to ESR 68 branch being closed off.
  • Hypatia now supports an extra malware hash database from ESET.
  • Credits and screenshots on the website have been updated.