GhostLock Linux kernel bug grants root access across major distros
Source headline: 15-Year-Old Linux Vulnerability ‘GhostLock’ Earns Researchers $92k From Google
Intelligence Summary
A long-standing Linux kernel vulnerability nicknamed GhostLock has been reported as affecting major distributions. The flaw can allow a local attacker to gain root privileges. It has been present in Linux since around 2011, making it widely exposed. Researchers disclosed the issue and Google reportedly paid a significant reward for the findings. Users should ensure their kernels are updated to include the relevant fixes and review exposure on systems that run older kernels.
Recommended Action
Prioritize immediate review, validate exposure, and patch or mitigate affected systems.