The general perception of the public is that Linux and macOS operating systems are far more secure as compared to Windows. While this notion holds true in most cases, it won’t be sensible to reject any possibility of exploit. Recently, a Google security researcher, Andrey Konovalov, uncovered a number of Linux vulnerabilities.



Konovalov found these 14 Linux USB flaws using Syzkaller, a kernel fuzzing tool, and reported them. “All of them can be triggered with a crafted malicious USB device in case an attacker has physical access to the machine,” according to him. As said above, it should be pointed out that the attacker must have a physical access to the machine for carrying out the attack. But, this pre-requirement shouldn’t encourage you to downplay the gravity of the situation.

Discussion

Source: [H]ardOCP – Linux Kernel USB Subsystem Has More Holes Than a Donut Shop