Menu

The most dangerous vulnerability in the last few years was found in the Linux kernel

Linux has discovered a vulnerability (CVE-2022-0847) that allows unverified users to overwrite the contents of any files. You can install backdoors, create unauthorized user accounts, change scripts used in privileged services or applications, and so on.

The vulnerability was named Dirty Pipe, similar to the 2016 Dirty Cow issue, which allowed unverified users to increase privileges on the system. The researchers then showed how you can get root access to any Android phone, regardless of the mobile OS version.

It is noted that Dirty Pipe is easier to operate than its predecessor — and also affects Android systems.

For the first time, this problem appeared in the Linux 5.8 kernel, which was released in August 2020 and affected almost all Linux distributions. Fixed it last month - with the release of versions 5.16.11, 5.15.25 and 5.10.102.The Fix was also added to the kernel used in Android.