Editing Security Updates
Jump to navigation
Jump to search
The edit can be undone. Please check the comparison below to verify that this is what you want to do, and then publish the changes below to finish undoing the edit.
Latest revision | Your text | ||
Line 1: | Line 1: | ||
The PSP had many revisions to its security through firmware upgrades. Many of these were silently added and the rest were simply labeled as "'''Revisions to strengthen security'''" by the update. This page will document on a technical level the security updates made by each firmware. | The PSP had many revisions to its security through firmware upgrades. Many of these were silently added and the rest were simply labeled as "'''Revisions to strengthen security'''" by the update. This page will document on a technical level the security updates made by each firmware. | ||
=== 1.03 === | === 1.03 === | ||
Line 30: | Line 10: | ||
* Introduced another bug where no encrypted PRX executable compressed with gzip will run, only modules may be gzipped. This bug persists in 1.51/1.52 and was fixed in 2.00. | * Introduced another bug where no encrypted PRX executable compressed with gzip will run, only modules may be gzipped. This bug persists in 1.51/1.52 and was fixed in 2.00. | ||
** ''This bug may be why official updates were never gzipped despite games and demos eventually doing so, to ensure the updates can be run from all firmwares.'' | ** ''This bug may be why official updates were never gzipped despite games and demos eventually doing so, to ensure the updates can be run from all firmwares.'' | ||
=== 1.51 === | === 1.51 === | ||
Line 42: | Line 21: | ||
* Properly blocks kernel ELF by restructuring the kernel. Also blocks unsigned ELF in proper. This is why the only way to run kernel ELF in newer firmwares requires the 1.XX kernel. | * Properly blocks kernel ELF by restructuring the kernel. Also blocks unsigned ELF in proper. This is why the only way to run kernel ELF in newer firmwares requires the 1.XX kernel. | ||
* Introduced signchecking on PRX files to tie them per-system. This was in response to people physically dumping their NANDs and being able to flash them to downgrade. | * Introduced signchecking on PRX files to tie them per-system. This was in response to people physically dumping their NANDs and being able to flash them to downgrade. | ||
=== 2.01 === | === 2.01 === | ||
* Patches the libtiff exploit introduced in 2.00 | * Patches the libtiff exploit introduced in 2.00 | ||
=== 2.50 === | === 2.50 === | ||
=== 2.60 === | === 2.60 === | ||
* The IPL now uses an extra layer of encryption in stage 2 tied to a pseudo-random number generated by doing a checksum of the | * The IPL now uses an extra layer of encryption in stage 2 tied to a pseudo-random number generated by doing a checksum of the pre-IPL. | ||
* The psp boot config files now contain checksums of all PRX files and block them if they don't match. | |||
=== 2.70 === | === 2.70 === | ||
=== 2.71 === | === 2.71 === | ||
=== 2.80 === | === 2.80 === | ||
=== 2.81 === | === 2.81 === | ||
=== 2.82 === | === 2.82 === | ||
Line 109: | Line 85: | ||
=== 6.10 === | === 6.10 === | ||
=== 6.20 === | === 6.20 === | ||
=== 6.30 === | === 6.30 === | ||
=== 6.31 === | === 6.31 === | ||
=== 6.35 === | === 6.35 === | ||
=== 6.36 === | === 6.36 === | ||
=== 6.37 === | === 6.37 === |