Security specialists are desperately trying to patch up a serious Linux Kernal vulnerability that existed in coding since 2012.
The zero day local privilege escalation flaw impacts versions 3.8 and higher and affects two thirds of Android devices, warned researchers at startup Perception Point who discovered the vulnerability.
This has implications for tens of millions of Linux PCs and servers, they added.
Yevgeny Pats, cofounder and CEO of Perception Point, told Threat Post: “It’s pretty bad because a user with legitimate or lower privileges can gain root access and compromise the whole machine. With no auto update for the kernel, these versions could be vulnerable for a long time. Every Linux server needs to be patched as soon the patch is out.”
A malicious mobile app would be able to exploit the flaw on an Android device (Kit-Kat and higher), with an attacker also requiring local access. It remains unclear at this point if the vulnerability has actually been exploited.
Perception Point have created a fix, which it described as “simple” but said the real problem is that not all carriers and manufacturers patch devices automatically.
Are you an open source expert? Take our quiz to find out!
Suspended prison sentence for Craig Wright for “flagrant breach” of court order, after his false…
Cash-strapped south American country agrees to sell or discontinue its national Bitcoin wallet after signing…
Google's change will allow advertisers to track customers' digital “fingerprints”, but UK data protection watchdog…
Welcome to Silicon In Focus Podcast: Tech in 2025! Join Steven Webb, UK Chief Technology…
European Commission publishes preliminary instructions to Apple on how to open up iOS to rivals,…
San Francisco jury finds Nima Momeni guilty of second-degree murder of Cash App founder Bob…
