Security specialists are desperately trying to patch up a serious Linux Kernal vulnerability that existed in coding since 2012.
The zero day local privilege escalation flaw impacts versions 3.8 and higher and affects two thirds of Android devices, warned researchers at startup Perception Point who discovered the vulnerability.
This has implications for tens of millions of Linux PCs and servers, they added.
Yevgeny Pats, cofounder and CEO of Perception Point, told Threat Post: “It’s pretty bad because a user with legitimate or lower privileges can gain root access and compromise the whole machine. With no auto update for the kernel, these versions could be vulnerable for a long time. Every Linux server needs to be patched as soon the patch is out.”
A malicious mobile app would be able to exploit the flaw on an Android device (Kit-Kat and higher), with an attacker also requiring local access. It remains unclear at this point if the vulnerability has actually been exploited.
Perception Point have created a fix, which it described as “simple” but said the real problem is that not all carriers and manufacturers patch devices automatically.
Are you an open source expert? Take our quiz to find out!
Google clashes with US Justice Department in closing arguments as government argues Google used illegal…
Prominent Stanford University AI scientist Fei-Fei Li reportedly completes funding round for start-up based on…
Apple shares surge on optimism that new AI-focused hardware launches will drive renewed sales, starting…
Biden vetoes Republican-backed measure amidst dispute over 'joint employer' status for contract workers, affecting tech…
Lawyers in US social media addiction action say strict controls on Douyin in China show…
More than 10,000 London black cab drivers sue Uber claiming company acted illegally to obtain…