A researcher from Northwestern University has just discovered a new vulnerability in Android. The vulnerability mainly affects version 5.10 of the Linux kernel.
Recently, the security of the Android operating system has become a high priority for Google. Several security patches and in particular Google Play Protect protect users from malicious applications Load game. These have significantly increased the security of our smartphones and devices, but unfortunately there is no zero risk for Google. For example, zero-day bugs are one of the biggest threats today, and the tech giant has already detected 58 of them in 2021 alone.
Recently, a new vulnerability of this type has just been discovered affecting the Android operating system. This was discovered by Zhenpeng Lin, a security researcher and PhD student at Northwestern University. The man in question demonstrated the vulnerability caused by this bug on his Pixel 6. And potential victims can be many latest generation Android smartphones, since the bug mainly affects the Linux kernel, specifically version 5.10.
A security vulnerability may affect your Samsung Galaxy S22 or your Pixel 6
Without going into overly technical terms and details, the flaw allows a cybercriminal to gain authorization to disable SELinux, the Linux kernel’s security module. Simply put, a cyber criminal who is able to exploit this flaw could have full access to the operating system with the possibility to steal personal information and cause multiple damages. As Zhenpeng Lin pointed out, the bug affects all smartphones running Linux kernel version 5.10, specifically Samsung’s Galaxy S22 series and Google’s Pixel 6 series.
The security researcher is yet to reveal details of the vulnerability, and he says users can have peace of mind while waiting for Google to release an update to fix the problem.
Google is indeed aware of the situation and the bug will be fixed quickly. Probably in September when Google announces new security patches. Meanwhile, it is advisable not to install applications from untrustworthy sources to minimize the risks.