Google creates fix for zero-day kernel flaw, says effect on Android is greatly exaggerated
After being caught off guard by the disclosure of a serious flaw in the Linux kernel this week, Google has quickly developed a patch for Android and shared it with device manufacturers.
It might take weeks for device makers to start releasing firmware updates that include the fix, but that’s not a huge problem since, according to Google’s assessment, the flaw doesn’t affect many Android devices to begin with.
The privilege escalation vulnerability allows attackers to gain full control over Linux-based systems if they have access to a limited account or trick users into running a malicious application. It was found by researchers from Israeli threat defense start-up Perception Point.