A beveiligingsonderzoeker has a bug in the Android kernel found. This makes it reportedly possible to in a simple way, roottoegang to obtain on Android devices. The bug would by the malware exploited can be.
That published beveiligingsonderzoeker Jon Oberheide on Twitter. To the kernelbug use, a user must have access to /dev/pvrsrvkm, for which no separate permissions would be needed. On his website, let Oberheide see the way in which use can be made of the bug to roottoegang on an Android device. The bug relates to the kernel in Googles mobile operating system, which is equipped with a Linux kernel.
The bug was due to Google fixed in version 2.3.6 of the Android OS. Many Android devices run, however, is still on an older version, so they are susceptible to the exploit. At the time of publication was a reference made to the PowerVR SGX chips in many Android devices serve as a gpu. Or the exploit can also be used on devices with other graphic chip is unknown. Among other things, the Google Nexus S and Samsung Galaxy S series would be susceptible.
There are currently no tools released to roottoegang to obtain on Android devices that use the kernelbug. However, it is likely that developers for this software are going to write, if the by Oberheide published method is usable. There seems to be only conventional user access to be necessary to roottoegang to obtain, which hackers have little difficulty having to do security work. Possible applications that are installed on this also this bug use, some abuse by Android malware easier to create.