Zero-Day Flaw Found in Linux Kernel to Affect Millions of Users

A critical zero-day vulnerability has been discovered in the Linux kernel recently. This vulnerability could allow attackers to gain root level access on any Linux platform (including Android) by running a malicious application on an affected device.

How Was The Vulnerability Found?

A startup called Perception Point discovered the critical Linux kernel flaw labelled CVE-2016-0728. The scientists at Perception Point believe that the vulnerability existed in the code since 2012.

So what does it do exactly? In a nutshell, it affects any operating system with Linux kernel 3.8 and higher. That being said, there are millions of devices and machines out there that are running higher versions.

Furthermore, it does not matter if the device or machine is running a 32 bit or 64 bit operating system, because the vulnerability exists on all systems running the affected Linux kernel. Naturally, there are several millions devices out in the open that are running previous Android updates and those running KitKat and higher account for approximately 66 percent of all devices, meaning that such devices are also exposed to the serious Linux kernel flaw.

If An Attacker Took Advantage Of The Vulnerability?

For starters, there is not a lot of effort the attacker has to take in order to begin the exploitation process because all they require is local access on a Linux server. If the vulnerability has been successfully exploited, it can possibly allow attackers to get root access to the operating system, which will enable them to view all sorts of information. Additionally, while the attackers have gained root access, they will also be able to carry out other tasks like deleting sensitive files or installing malicious applications that can have terrible results.

It’s pretty bad because a user with legitimate or lower privileges can gain root access and compromise the whole machine. With no auto update for the kernel, these versions could be vulnerable for a long time. Every Linux server needs to be patched as soon the patch is out. – Yevgeny Pats, co-founder and CEO at Perception Point

Despite the fact that flaws in Linux kernel are patched as soon as they are found, the zero-day vulnerability recently discovered in the Linux kernel made its way for almost 3 years. However, researchers have said that no exploits have been discovered as of yet that will let attackers take advantage of their evil intent, but it is always better to be safe than sorry. This is the reason why the news has already reached the Linux team, and patches are expected to roll out with automatic updates. The only problem right now is that it might take a little longer on Android devices to receive the patch, since most updates are not rolled out automatically by manufacturers and carriers.