New PS4 and PS5 Kernel Vulnerability Leaked: Higher Firmware Jailbreaks Possible
Exciting news has recently surfaced in the world of console enthusiasts. A significant new kernel vulnerability for both the PlayStation 4 (PS4) and PlayStation 5 (PS5) has been leaked. This breakthrough could open the door for jailbreaks on much newer firmware versions than what is currently possible. For years, many users have waited for a way to modify their consoles beyond the older available methods. This new discovery brings fresh hope, showing that even Sony's latest security patches might be bypassed.
A Major Discovery for Console Security
The news first spread through the community thanks to Zego, a known figure in console development. Zego shared information pointing to this critical security flaw. Soon after, more details were added to the PS4 and PS5 development wikis, confirming its importance. This vulnerability is a "double free" issue related to how the console's core software, known as the kernel, manages memory. Specifically, it involves the AIO multi-de function which had improper locking.
This issue relates to an older security problem, CVE-2020-3090. However, it was not reported to Sony's official bug bounty program. Instead, it was reported to FreeBSD, the underlying operating system that powers PlayStation consoles. An anonymous user later shared kernel dumps from PS4 firmware 12.50. These dumps helped to show that the vulnerability was eventually patched in later software updates.
Understanding the Vulnerability
A kernel vulnerability is a weakness in the main control software of a console. Imagine the kernel as the brain of the PlayStation; a flaw in this brain can allow unauthorized actions. The "double free" bug means that the console's memory management system makes a mistake. It tries to free up the same block of memory twice. This error, combined with "improper locking," creates a window of opportunity. During this window, malicious code can be injected and run, giving users more control over their console.
For the PS4, this vulnerability appears to work up to firmware 12.02. Sony patched it in version 12.50. On the PS5, the vulnerability seems to affect firmwares up to 10.60, with the patch coming in version 11.0. While initial tests on the PS5 show the console experiencing a
.jpg)
.jpg)
0 Comments