GrapheneOS v2023091800 Released

• "The September releases of AOSP and the stock OS came out on 2023-09-18 and are incorporated into this release."
• "Unusually, they still set the patch level to 2023-09-01 despite having all listed patches for 2023-09-05 for some of the devices such as the Pixel 6 and Pixel 7."
• "We left the listed patch level alone to avoid delaying the release for aesthetic reasons while we figured out where it could be raised due to delayed Qualcomm firmware patches."
• "We shipped 2023-09-01 in our much earlier 2023090600 release but this is the official September release from AOSP and the stock OS rather than just applying the Android Security Bulletin backports to Android 13."
• "The strange timing and inclusion of only a single patch (Mali GPU kernel driver fix) in the September Pixel Update Bulletin is due to Android 14 being scheduled for this month but delayed to October."
• "The Pixel Update Bulletin for Android 14 will include a large number of recommended AOSP security patches and many hardware related patches, neither of which will be backported to Android 13, so we've already put a significant effort into porting to Android 14 via our limited early access to the source code."

"We aim to have our Android 14 port available as soon as possible after the stable release is published due to the importance for security. It's unfortunate we don't have full access to the sources in advance like Android partners, but we've had access to more than we usually do this year and for longer due to the delay."

• "We've also included additional Mali GPU kernel driver patches and a libwebp patch in this release, similar to the kernel.org LTS patches we ship on a regular basis many months before Android."
• "We'll do more of this in the future as our resources and partnerships grow, but we don't have much ability to ship firmware patches earlier until there's hardware built to run GrapheneOS."

What's new

• integrate official September update as a replacement for the backports in the last release
• rebased onto TQ3A.230901.001 (generic, coral), TQ3A.230901.001.B1 (tangorpro) and TQ3C.230901.001.A1 (felix) Android Open Source Project releases
• kernel (Pixel 6, Pixel 6 Pro, Pixel 6a, Pixel 7, Pixel 7 Pro, Pixel 7a, Pixel Tablet, Pixel Fold): backport additional Mali GPU driver security fixes from Android 14 Beta 5.3
• webp: backport fix for CVE-2023-4863 not included in the Android September security patch level
• Settings: remove Storage manager toggle since it lacks an implementation without Play services integrated into the OS
• kernel (Generic 5.15): update to latest GKI LTS branch revision including update to 5.15.131
• Vanadium: update to version 117.0.5938.44.0
• Vanadium: update to version 117.0.5938.44.1
• Vanadium: update to version 117.0.5938.60.0
• GmsCompatConfig: update to version 73
• GmsCompatConfig: update to version 74
• adevtool: add command for fetching info about stock OS kernels from AOSP repositories

Full Changelog
Archive