Google Finally Patches 'Dirty COW' Linux Vulnerability With December Android Security Update

Advertisement
By Shekhar Thakran | Updated: 6 December 2016 18:25 IST
Highlights
  • Active exploits of the flaw were discovered two months back
  • Latest security update fixes several critical vulnerabilities
  • The patch for the flaw was earlier expected to come in November

In October, Linux security researcher discovered that a nine-year old Linux kernel flaw (CVE-2016-5195) was witnessing active exploits in the wild. The flaw was dubbed "Dirty COW", an acronym for the duplication technique called copy-on-write, and could potentially give root access of a device to the attacker within a matter of seconds. Now, Google has finally patched the critical flaw on Linux with its latest Android security update, and the patch is available for OEMs to implement on their Android devices.

The latest security update from the search giant, released alongside the Android 7.1.1. Nougat update on Monday, fixes over 50 security flaws including 11 with critical severity - including Dirty Cow. "The exploit in the wild is trivial to execute, never fails and has probably been around for years - the version I obtained was compiled with gcc 4.8," Oester said in October. The bug was initially patched 11 years ago but the fix was later undone in another code commit.

Advertisement

Last month, Google was expected to patch the flaw with its security update for November but the company couldn't patch the flaw at the time. However, Google released a supplemental fix for Pixel and Nexus devices. Kaspersky Lab's Threatpost reported that Samsung also released a fix for its mobile devices. Google had said that the company will introduce the Android-wide patch for Dirty COW in the December Android security update.

As per the dedicated page for this flaw, exploitation of this bug doesn't leave any traces behind. This nature of the flaw makes it even more dangerous as the users will not be made aware even when their security has been compromised.

Advertisement

Apart from this critical flaw, the search giant also patched another critical kernel memory flaw, CVE-2016-4794, which also allows attackers to gain root privileges of users' device. The security update comes with a patch for critical privilege escalation flaws regarding Nvidia's video and camera drivers.

The critical vulnerabilities concerning Qualcomm components was also fixed with company's latest security update.

 

Get your daily dose of tech news, reviews, and insights, in under 80 characters on Gadgets 360 Turbo. Connect with fellow tech lovers on our Forum. Follow us on X, Facebook, WhatsApp, Threads and Google News for instant updates. Catch all the action on our YouTube channel.

Advertisement
Popular Mobile Brands
  1. Oppo K15 Launch Date Confirmed; Key Specifications Revealed Ahead of Debut
  2. WhatsApp Usernames Are Reportedly Available for Some Android and iOS Users
  3. Here's When the Poco M8 Power, Poco X8 Could Launch in India
  4. iPhone 18 Pro Max Could Get a New Sony Sensor With Variable Aperture Tech
  5. Airtel Unlimited 5G Data Subscribers Reportedly Cannot Share 5G Data via Mobile Hotspot
  6. OnePlus Exits US, Europe, Continues Operations in India: 5 Things to Know
  7. Insomniac Games Shares New Trailer for Marvel's Wolverine
  8. Here's How Much the iQOO Z11 Lite Could Cost in India
  1. Redmi Note 17 Pro Global Variant Reportedly Appears on NBD Database Alongside Poco Model
  2. Google Pixel 11a Codename Reportedly Spotted in Phone App
  3. Huawei Mate XT 2 Leaked Patent Reveals New Tri-Fold Design and Folding Mechanism
  4. Airtel Unlimited 5G Data Subscribers Reportedly Cannot Share 5G Data via Mobile Hotspot: Here's What We Know So Far
  5. Lenovo Legion C700 Teased as a Cloud Gaming Handheld Ahead of August Launch
  6. Marvel's Wolverine Gets New Trailer That Will Play Ahead of Christopher Nolan's The Odyssey in Select Theatres
  7. Airtel Quietly Removes Rs. 549 Individual Postpaid Plan in India; Rs. 699 Plan Becomes Next Upgrade
  8. Poco M8 Power, Poco X8 India Launch Timeline Tipped; Could Arrive as Rebranded Redmi Note 17 Series
  9. Samsung Galaxy S25 Series Could Get Galaxy S26’s Horizontal Lock Camera Feature With One UI 9 Update
  10. Asus Pad India Launch Date Announced as Company Reveals Key Specifications
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2026. All rights reserved.