Galaxy S22, Pixel 6, and all Android and Other Devices Running Linux Kernel v5.10 are Prone to Zero-Day Vulnerability
A new vulnerability has been discovered in Galaxy S22 and Pixel 6 phones by Zhenpheng Lin, a Ph.D. student at Northwestern University who focuses mainly on kernel security. According to Lin, it is a zero-day vulnerability in the kernel that could pwn the Google Pixel 6 and the Galaxy S22 as well. However, this could also be done on the Pixel 6 Pro, and essentially any device that is based on the kernel v5.10. You can check out Lin’s tweet below.
— Zhenpeng Lin (@Markak_) July 5, 2022 Lin has also mentioned that with the latest vulnerability, an attacker can gain access to read and write access and will also have the ability to disable the SELinux, so in theory, if your Galaxy S22 or Google Pixel 6 are attacked in such a way, the hacker will have the option to mess with the operating system, along with the built-in security privileges of a device. Lin has also mentioned that this vulnerability is not limited to just phones as the general Linux kernel is affected the same way. He has also pointed out that Android devices with July security updates are also prone to this vulnerability. Knowing the procedure that goes into reporting a vulnerability to Google, and then waiting for a fix, it would take months before this gets addressed. Meanwhile, I would highly advise all Galaxy S22 and Pixel 6 owners, as well as Android owners in general, to not install any app from the Play Store that you do not trust and the same goes for sideloading apps.