Line 1: |
Line 1: |
− | The Old3DS+New3DS 11.14.0-46 system update was released for all regions on November 17, 2020. This Old3DS update was released for the following regions: USA, EUR, JPN, CHN, KOR, and TWN. This New3DS update was released for the following regions: USA, EUR, JPN, CHN, KOR, and TWN. | + | The Old3DS+New3DS 11.14.0-46 system update was released for all regions on November 17, 2020 (UTC). This Old3DS update was released for the following regions: USA, EUR, JPN, CHN, KOR, and TWN. This New3DS update was released for the following regions: USA, EUR, JPN, CHN, KOR, and TWN. |
| + | |
| + | Security flaws fixed: yes. |
| | | |
| ==Change-log== | | ==Change-log== |
− | [https://en-americas-support.nintendo.com/app/answers/detail/a_id/667/p/430/c/267 Official] USA change-log: | + | [https://en-americas-support.nintendo.com/app/answers/detail/a_id/231/~/system-menu-update-history Official] USA change-log: |
− | * TBD | + | * Further improvements to overall system stability and other minor adjustments have been made to enhance the user experience. |
| | | |
| ==System Titles== | | ==System Titles== |
| ===NATIVE_FIRM=== | | ===NATIVE_FIRM=== |
− | * Kernel11 was updated, svcBindInterrupt will now only bind to ARM11 interrupt 15(fiq related) if its running on debug hardware, otherwise 0xD8E007EE is returned. | + | ====Kernel11==== |
| + | * svcBindInterrupt and svcUnbindInterrupt will now only accept to handle Arm11 interrupt 15 (FIQ helper) if its running on development hardware, otherwise 0xD8E007EE is returned: |
| + | ** this is because the affected code path in svcUnbindInterrupt is vulnerable to a double-free vulnerability; this change makes it impossible to trigger on consumer hardware |
| + | * When mapping the firmlaunch parameter to the user-specified VA, svcKernelSetState now checks that the provided VA is within the 0x10000000..0x14000000 range (an attacker could previously pass VA=0) |
| + | * The compiler seems to have been upgraded (or the optimization parameters changed) |
| + | |
| + | ====KIPs==== |
| + | No changes. |
| + | |
| + | ====Process9==== |
| + | The anti-downgrade list has been updated accordingly. No other changes. |
| + | |
| + | ====Kernel9==== |
| + | Kernel9 has been updated, presumably it's just a rebuild with the latest sources and toolchain. |
| + | |
| + | ===[[Friend_Services|Friends-sysmodule]]=== |
| + | * Reported fpdver upgraded to 0xF. |
| + | |
| + | ===[[SSL_Services|SSL-sysmodule]]=== |
| + | SSLoth was [[3DS_System_Flaws#Standalone_Sysmodules|fixed]]. |
| + | |
| + | Unknown whether there's other changes. |
| + | |
| + | ===[[Internet Browser]]=== |
| + | * Fix for both exploits used in zoogie's browserhax 2020. |
| + | * {...} |
| | | |
− | ===Friends driver===
| |
− | * Reported version upgraded to 0xF
| |
− | ===SSL driver===
| |
− | * TBD, possibly TLS 1.3 support and/or an update to root certificates.
| |
− | ===Internet Browser===
| |
− | * Fix for both exploits used in zoogie's browserhax 2020
| |
− | * TBD, possibly TLS 1.3 support and/or an update to root certificates.
| |
| ===Hotspot list=== | | ===Hotspot list=== |
| * "nintendo[1-5]", "NCL-NZSERVICE[2-5]", and "nzae200818" removed | | * "nintendo[1-5]", "NCL-NZSERVICE[2-5]", and "nzae200818" removed |