PS4 3.11 Out of Bound Read (Freetype 64bit Exploit), fail0verflow's PS4 patches and drivers and his previous PlayStation 4 Kernel Exploitation, today PS4 developers CTurt and Qwertyoruiop revealed news of a PS4 kernel heap overflow exploit alongside an analysis of sys_dynlib_prepare_dlclose for PlayStation 4 developers to examine further.
Below are some recent Tweets on their latest PS4 kernel exploit, as follows:
Finally, from Wololo comes a summary of their findings thus far with it, to quote:
- The exploit has been patched around firmware 2.00, so it will not be useful for people expecting a PS4 hack on the latest firmware 3.15.
- Cturt also announced that he will not release a fully weaponized exploit, and is just sharing the knowledge on how the vulnerability was exploited.
- He’s apparently actively working on the PS4 with other hackers such as Qwertyoruiop (a well know hacker famous for his work on iOS, among other things).
- The exploit itself lies in function sys_dynlib_prepare_dlclose and some of its internal calls such as copyin. Full details can be found in CTurt's article.