An extremely serious Linux kernel vulnerability known as "Dirty Pipe" has affected the Google Pixel 6, Samsung Galaxy S22, and several other new Android 12 smartphones. A malicious software can use this flaw to get system-level access and rewrite data in read-only files on the system. The problem was first discovered in the Linux kernel and was later replicated on Pixel 6 by a security researcher. Google was also made aware of its presence in order to roll out a patched system upgrade.
The 'Dirty Pipe' vulnerability was discovered by security researcher Max Kellermann of the German Web development company CM4all. Other researchers were able to outline the effect of the security flaw, which has been labeled CVE-2022-0847, shortly after Kellermann officially exposed it this week. According to Kellermann, the problem has been present in the Linux kernel from version 5.8, however it was addressed in Linux 5.16.11, 5.15.25, and 5.10.102.
It's comparable to the...