I don’t really know what Support could or would do about it. If Fairphone doesn’t monitor their own forum for free user feedback then it’s kinda their own fault.
You are absolutely right. But it will likely also cost them a lot to support the Fairphone without support from Qualcomm.
It’s actually not extremely common for patches to impact performance a lot. That was mostly specific to Spectre because the vulnerability affected a performance enhancing feature.
You are also right. But I think this post should be enough. If not then it’s on them.
I choose the title to be provocative on purpose.
Well, I don’t really think there is a lot to be debated. Would you use a lock on your door that can be opened with a paper clip? Or a lock like that on your car?
And this doesn’t even begin to touch the whole privacy issue. IMO devices that have cameras, microphones and GPS trackers installed should only be used with absolute highest security guarantees.
You are asking me to find a specific vulnerability in a specific device that is currently exploitable. This is the job of a security researcher and PenTester. But I’m neither. I’m just a concerned customer who values security.
However, I can still point you into directions:
This is an article from 13.05.2021. If you check out the the corresponding security bulletin from Qualcomm:
APQ8009, APQ8009W, APQ8017, APQ8037, APQ8053, APQ8084, APQ8096AU, AQT1000, AR6003, CSR6030, CSRB31024, MDM8207, MDM8215, MDM8215M, MDM8615M, MDM9150, MDM9205, MDM9206, MDM9207, MDM9215, MDM9230, MDM9250, MDM9310, MDM9330, MDM9607, MDM9615, MDM9615M, MDM9625, MDM9628, MDM9630, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8108, MSM8208, MSM8209, MSM8608, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8976, MSM8976SG, MSM8996AU, QCA1990, QCA4004, QCA6174, QCA6174A, QCA6310, QCA6320, QCA6335, QCA6390, QCA6391, QCA6420, QCA6421, QCA6426, QCA6430, QCA6431, QCA6436, QCA6564A, QCA6564AU, QCA6574, QCA6574A, QCA6574AU, QCA6584, QCA6584AU, QCA6595AU, QCA6694, QCA6694AU, QCA6696, QCA9367, QCA9377, QCA9379, QCM4290, QCM6125, QCS410, QCS4290, QCS603, QCS605, QCS610, QCS6125, QET4101, QSW8573, Qualcomm215, SA415M, SA515M, SA8155, SA8155P, SC8180X+SDX55, SD 455, SD 636, SD 675, SD 8C, SD 8CX, SD205, SD210, SD429, SD439, SD450, SD480, SD632, SD660, SD665, SD670, SD675, SD678, SD690 5G, SD710, SD712, SD720G, SD730, SD750G, SD765, SD765G, SD768G, SD820, SD821, SD835, SD845, SD850, SD855, SD865 5G, SD870, SD888 5G, SDA429W, SDM429W, SDM630, SDW2500, SDX20, SDX24, SDX50M, SDX55, SDX55M, SDXR1, SDXR2 5G, SM6250, SM6250P, SM7250P, WCD9306, WCD9326, WCD9330, WCD9335, WCD9340, WCD9341, WCD9360, WCD9370, WCD9371, WCD9375, WCD9380, WCD9385, WCN3610, WCN3615, WCN3620, WCN3660, WCN3660B, WCN3680, WCN3680B, WCN3910, WCN3950, WCN3980, WCN3988, WCN3990, WCN3991, WCN3998, WCN6850, WCN6851, WCN6855, WCN6856, WHS9410, WSA8810, WSA8815, WSA8830, WSA8835
They don’t list the SD801. Does this mean it’s not affected even though essentially every other current Qualcomm SoC is? Unlikely. They probably just don’t include vulnerable chipsets that are EoL. To confirm this you can check out all the bulletins over the last years and you will see that the SD820 was affected by something almost every single month since its release. The SD801 was never listed.