The bug is remotely exploitable without authentication or user interaction.
Researchers said the vulnerability “is very easy to exploit.”
Apple, Microsoft, Red Hat and others have built an uncannily similar privilege escalation flaw into their Intel-based products.
Widespread reports of reboot issues on some Intel systems force the chip giant to pump the brakes on rolling out patches for side-channel vulnerabilities.
As part of its December Android and Pixel/Nexus security updates, Google has issued patches addressing a bevy of flaws, 11 of which are rated critical.
Android receives three remote code execution patches for vulnerabilities rated critical as Google launches a new Pixel/Nexus Security Bulletin.