|Linux, which lies at the core of most servers and smartphones, appears to have a critical bug that has existed for 9 years: the so-called “Dirty Cow” bug allows an intruder to gain privilege escalation on the kernel.
As you may know, Linux is a free open-source OS, which lies at the heart of a huge number of applications, usually used in webservers (Red Hat, Ubuntu, Debian), and even Android. Open-source means that anyone can see, re-use, and suggest edits to the core source code. Such improvements are usually thought to increase the security of the OS: the logic is that many eyes result in a higher chance of someone detecting bugs.
This is why it is so surprising that the Dirty Cow bug was originally introduced to the kernel almost a decade ago and is still sitting there, having remained unnoticed. Moreover, according to the recent research, the typical Linux bug exists for about 5 years before it is fixed.
This bug is a vulnerability classified as a “privilege escalation bug” – it allows an attacker to leverage somehow gained control over the machine into total control. It was reported that the exploit taking advantage of this bug has already been found in the wild. While the vulnerability is quite serious, the researchers believe that it shouldn’t distract from the more workaday Linux bugs, which are found regularly. The major issue with the Dirty Cow isn’t its danger, but its age. The matter is that the bug is easy to exploit reliably, and thanks to so many years of its existence, it will be in millions of computers.
The patch has already been released on some of the major versions of Linux, including Red Hat, Debian and Ubuntu. However, for many other devices running Linux, especially embedded versions of the OS, the patch will be difficult to apply and potentially nonexistent – including Android. The mobile operating system is also affected: while the newest Android devices like Galaxy S7 receive regular security updates, most of Android devices that are sold now receive few post-sale updates or none at all. Google confirmed that Android is one of the Linux distributions affected. The tech giant has already posted a Partner Security Advisory to alert Android partners, and hopefully the patch for everyone will be issued soon.
Sunday, October 23rd, 2016
|I say if the hackers cannot get root access then they would actually bomb things....|
|posted by (2016-10-23 16:19:28)|
|Well, so much for the notion that having a lot of people involved means better security.|
|posted by (2016-10-23 17:41:40)|
|Lol, linux should be dead by now.|
|@ XpoZ Linux is more popular than ever. What with Windows 10 being nothing more than glorified spyware. If it was dead you wouldn't be posting on this site, watching your TV.. blah, blah..|
|posted by (2016-10-24 03:54:32)|
|Isn't it nice how Google killed updates to all older Android devices? You literally CAN'T update them no matter how hard you try. So people who can't update and won't throw their older devices in the trash are all potentially hackable and can be owned by hackers worldwide. Great job, Google!|
|posted by (2016-10-24 05:23:33)|
|@#1 , there might be some truth to that LOL. @#4, your spot on!! @#6, that also goes for earlier versions of windows like XP. A lot of the companies are betraying the trust of their customers today. Microsoft admits they have spyware in windows 10 but people use it anyway! Even some of the hardware is malicious like the built in HD webcams that work even in low lighting. Just gotta shake your head and put tape over it and constantly check if someone has been on your computer after leaving the home. But they can still listen to you through the internal microphone. Gotta open it up and destroy it cause disabling it isn't enough. It's a mess!|
|As a person who uses Linux in my work I can say it should just die!!!! One of the worst operating systems ever invented!!!|
|@ krisman72 As a person who uses Linux everyday for everything and only uses Windows for gaming I can say its one of the best operating systems ever invented, go figure. Certainly the best one I've ever used ( and I've used a lot ). I think they call it personal preference or something, you know, swings 'n roundabouts. A Hammer is only as good as the person using it after all|
|Kicked Linus in to touch after researching and installing the 'most user friendly' version that people were raving about. This was Ubuntu. Then DL firefox and damn, could not install it. Read up and said use Terminal to use Firefox. And damn again, searched high and low and even used Ubuntu's own search looking for Terminal. Could not find it. Googled away and found f-all there too. Then looked how to uninsatll it. Damn again...what a pain in the ass. Ended up just leaving it installed.|
|so now google wants us to throw the old androids and purchase the new ones. that receives regular security OTA updates.haha|
|Windows has had security flaws ever since win95.|
Dozens of them and microsoft won't fix them.
At least with linux they have less of those flaws.
About installing FF in Ubuntu - use synaptic
Open terminal, type in sudo synaptic
enter password when asked
once it opens you click refresh icon
then search for firefox.
You can update it or remove it there
While there you can install Chromium if desired.
Once finished, come back here to make sure everything works
At least Linux is immune to Windows viruses, which are the most prevalent ones on the planet.
If Ubuntu is too hard switch to another one. Mint is pretty good. So is PCLOS.
Maybe someone should file class action suit to force google to allow updates?
|posted by (2016-10-25 09:43:42)|
|Ubuntu is hard to use?|
Must not have been around when you had to know DOS commands to maneuver around Windows.
|posted by (2016-10-25 15:17:49)|
|LOL at Wyatt525 You are dead on. I love Linux Ubuntu. Easier than Win 10.|
|I have been using linux mint for a couple years not and its perfect for me. I have everything I need, it does not waste resources like other OS's do. I find it faster over all. I had to learn a few things and make some modifications or add some command lines but who cares, I like that you have to learn a little bit. Windows was always crashing and locking up or taking forever to think, ever file transfer is much slower. Im not sure how anyone could hate it.|
|Windows made it possible to dumb down the average joe computer user, Linux Mint Sarah FTW I love Windows one of the best cash generators around... so, Windoze FTW also lol!|
|posted by (2016-10-27 05:34:07)|
|As an employee of Micro$oft, I must say, Winblows SUCKS!! All of M$ software is only designed to generate funds... not be usable or secure, your dead on Darkan9el. I would never use Winblows if it weren't for my job.|
Long live Mac and Linux!!
Most Popular Stories