Patch Levels
Below is version information for branches and devices for you to judge your device's security upon.
A note on operating system security¶
There is a singular all-or-nothing, all-encompassing Android security bulletin released every month that covers security issues across the entire system.
Below we break it into five parts solely for ease of understanding for you to determine the general security of a given operating system.
Being behind on any one part means the system is inherently insecure.
- the version of Android itself, newer versions have more security features/hardening
- the ASB patch level, these are essential security patches
- the Pixel ASB patch level, these are recommended security patches and are only provided for the latest Android version. Despite the name, the majority are NOT Pixel specific as described here.
- the vendor ASB patch level, see Qualcomm
- and lastly the Linux kernel version
How does DivestOS compare to the other available operating systems?¶
Please see this extensive independently maintained comparison table.
Does DivestOS make my device secure?¶
The short answer: No.
The long answer is that DivestOS is likely the best harm reduction option if your device is no longer in support by its manufacturer or vendor.
Any project or product claiming they make end-of-life devices secure should be rigorously scrutinized.
Lastly it must be noted that privacy and security go hand-in-hand, there is a fundamental limit of how much privacy you can achieve if you do not have security backing it up.
If DivestOS isn't secure, then why should I be using it?¶
To be clear: you should seek out a newer non-EOL device, but not everyone can afford such. Additionally for a handful of use cases DivestOS fills the gap enough to be OKish, eg. offline music/maps/wikipedia device, basic gaming (solitaire/sudoku/etc.), basic browsing of trusted websites with updated browsers, a spare/backup device, website or Android app development/testing, etc. And security aside, it still has substantial benefits over the stock/final release for EOL devices.
Branches¶
Last updated: 2024-12-06
Asterisk* denotes known missing patches
DivestOS inherently cannot and does not include all patches from the monthly Android Security Bulletin.
The patch level shown in the Settings app on DivestOS should not be regarded as accurate, in favor of this page. It merely conveys the most recent month that it may contain patches from.
Also of note, DivestOS typically takes eight months to stabilize after a new Android version is released.
A historical comparison of operating system patch levels is available here, along with patch counts documented here.
Version | First Released | End of Life | Android Security Bulletin | Pixel Security Bulletin |
---|---|---|---|---|
20.0 / 13.0 / T ★ | 2022-08-15 | Late ~2026? | LOS: 2024-12, DOS: 2024-11 | 2023-09, BEHIND! |
19.1 / 12.1 / S | 2022-03-07 (2021-10-04) | Mid ~2025 | LOS: 2024-11, DOS: 2024-11 | 2022-07, BEHIND! |
18.1 / 11.0 / R | 2020-09-08 | 2024-02, EOL! | LOS: 2024-02, DOS: 2024-11* | 2021-10, BEHIND! |
17.1 / 10.0 / Q | 2019-09-03 | 2023-02, EOL! | LOS: 2023-02, DOS: 2024-11* | 2020-08, BEHIND! |
16.0 / 9.0 / P | 2018-08-06 | 2022-01, EOL! | LOS: 2022-01, DOS: 2024-11* | 2019-08, BEHIND! |
15.1 / 8.1.0 / O | 2017-12-05 (2017-08-21) | 2021-10, EOL! | LOS: 2021-10, DOS: 2024-11* | 2018-12, BEHIND! |
14.1 / 7.1.2 / N | 2016-10-04 (2016-08-22) | 2019-10, EOL! | LOS: 2021-06, DOS: 2024-11* | 2017-12, BEHIND! |
Linux Version Status¶
Last updated: 2024-12-06
Version | Latest Available | First Released | End of Life |
---|---|---|---|
6.6 | 6.6.63 | 2023-10-29 | 2026-12 |
6.1 | 6.1.119 | 2022-12-11 | 2026-12 |
5.15 | 5.15.173 | 2021-10-31 | 2026-12 |
5.10 | 5.10.230 | 2020-12-13 | 2026-12 + 2031-01 (CIP) |
5.4 | 5.4.286 | 2019-11-25 | 2025-12 |
4.19 | 4.19.325 | 2018-10-22 | 2024-12-05 + 2029-01 (CIP) |
4.14 | 4.14.336 | 2017-11-12 | 2024-01-10 + 2024-12 (OpenELA) |
4.9 | 4.9.337 | 2016-12-11 | 2023-01-07 |
4.4 | 4.4.302 | 2016-01-10 | 2022-02-03 + 2027-01 (CIP) |
3.18 | 3.18.140 | 2014-12-07 | 2019-05-16 + 2021-10-05 (Google/Linaro) |
3.10 | 3.10.108 | 2013-06-30 | 2017-11-04 |
3.4 | 3.4.113 | 2012-05-20 | 2016-10-26 |
3.0 | 3.0.101 | 2011-07-21 | 2013-10-22 |
Devices¶
Last updated: 2024-11-14
Of note, DivestOS only includes firmware on select devices as documented here.
Devices listed below denoted with a '★' can be considered reasonably secure if firmware is included, the device is relocked, and it supports verified boot.
Please also take into account whether or not a device actually has a working bootloader.