The vulnerability was present in the code since 2012, and affects any operating system with Linux kernel 3.8 and higher, so there are probably tens of millions of computers, both 32-bit and 64-bit, exposed to this flaw.
Impact of the Zero-Day Vulnerability
"It's pretty bad because a user with legitimate or lower privileges can gain root access and compromise the whole machine," Yevgeny Pats, co-founder and CEO at security vendor Perception Point, said in a blog post published today."With no auto update for the kernel, these versions could be vulnerable for a long time. Every Linux server needs to be patched as soon the patch is out."
The Cause of the Critical Linux Kernel Vulnerability
Patch Expected to Roll Out Soon
How Patch Linux Kernel Vulnerability (CVE-2016-0728)
- Debian or Ubuntu Linux: sudo apt-get update && sudo apt-get upgrade
- RHEL / CentOS Linux: sudo yum update
UPDATE — Kernel bug Not A Big Deal for Android Users
"We believe that no Nexus devices are vulnerable to exploitation by 3rd party applications. Further, devices with Android 5.0 and above are protected, as the Android SELinux policy prevents 3rd party applications from reaching the affected code," said Adrian Ludwig, Android's lead security engineer.
"Also, many devices running Android 4.4 and earlier do not contain the vulnerable code introduced in Linux kernel 3.8, as those newer kernel versions not common on older Android devices."
Please Subscribe our Youtube channel::
Please Like our facebook page::
Follow us on Twitter::