What does it mean when a Linux Kernel has a vulnerability?
the Linux kernel is the software which runs the system – the main operating system software it is inside all other software – it does connect to applications with shell (usually Bourne
image from Linoxide
Updated the image to include Android possible issues (since Linux kernel is inside Android)
It is another example in the work of vulnerabilities and researchers and hackers:
Here is the researchers timeline (from https://dirtypipe.cm4all.com/):
- 2021-04-29: first support ticket about file corruption
- 2022-02-19: file corruption problem identified as Linux kernel bug, which turned out to be an exploitable vulnerability
- 2022-02-20: bug report, exploit and patch sent to the Linux kernel security team
- 2022-02-21: bug reproduced on Google Pixel 6; bug report sent to the Android Security Team
- 2022-02-21: patch sent to LKML (without vulnerability details) as suggested by Linus Torvalds, Willy Tarreau and Al Viro
- 2022-02-23: Linux stable releases with my bug fix (5.16.11, 5.15.25, 5.10.102)
- 2022-02-24: Google merges my bug fix into the Android kernel
- 2022-02-28: notified the linux-distros mailing list
- 2022-03-07: public disclosure
review this vulnerability and make sure that your Linux systems are not vulnerable – if they are then patch them as soon as you can – they have to be above 5.15
this vulnerability is also a good example of the constant battle between the researchers and attackers which are always trying to find the next vulnerability (this is an example where the researcher got one and disclosed it).
Above image shows what happens from Bug found to patched safe.
Contact us with your issues.