@adlerweb@social.adlerweb.info2026-05-07 20:19:05
Es gibt wohl mal wieder eine LPE im #linux kernel: #DirtyFrag. POC läuft zumindest mal auf nem Testsystem mit älterem Kernel. Laut Seite ist es in den Distros bisher *nicht* gepatched.
@adlerweb@social.adlerweb.info2026-05-07 20:19:05
@hanno@mastodon.social2026-05-07 21:07:08
99% of people probably don't use ipsec (and probably shouldn't use it), why do we have ipsec kernel modules installed by default on every linux distro? #dirtyfrag
@mgorny@social.treehouse.systems2026-05-08 17:33:24
New #Gentoo Distribution Kernel batch went stable just now, with fixes for both variants of #DirtyFrag for the newest kernels, and fix mitigation for older versions where no fix exists yet.
Thanks to @… for the patches!
@gideonstar@mastodon.gideonstar.de2026-05-08 07:21:58
If this continues, I'll uninstall sudo.
#copyfail #dirtyfrag
@mgorny@social.treehouse.systems2026-05-19 15:43:09
We've also posted about our #CopyFail, #DirtyFrag, #Fragnesia handling on the #Gentoo website:
https://www.gentoo.org/news/2026/05/19/copy-fail-fragnesia-vulnerabilities.html
…and yes, another secfix round coming.
CC @…
@mgorny@social.treehouse.systems2026-05-11 20:01:00
Remember 7.0.5/6.18.28 kernels? These that had one #DirtyFrag fix but #Gentoo had to backport the other?
Today's 7.0.6/6.18.29 kernels have the other fix. But #Gentoo kernels also backport a fix for that fix 🤦. #Linux