Dirty Frag: Universal Linux LPE - allows any unprivileged local user to gain root access on a vulnerable Linux system - no patch available

rabber@lemmy.ca · 3 days ago

Dirty Frag: Universal Linux LPE - allows any unprivileged local user to gain root access on a vulnerable Linux system - no patch available

Ooops@feddit.org · edit-2 2 days ago

Update: Kernel 7.0.5 just released

Fixes: cac2661c53f3 (“esp4: Avoid skb_cow_data whenever possible”)

Fixes: 03e2a30f6a27 (“esp6: Avoid skb_cow_data whenever possible”)

Fixes: 7da0dde68486 (“ip, udp: Support MSG_SPLICE_PAGES”)

Fixes: 6d8192bd69bb (“ip6, udp6: Support MSG_SPLICE_PAGES”)

Arthur Besse@lemmy.ml · 10 hours ago

that kernel release (which most distros have still not shipped yet) fixes only one of the two vulnerabilities (CVE-2026-43284); afaik even upstream still doesn’t have a patch for the second one (CVE-2026-43500) at this time.

(for people relying on Linux privilege separation, here are mitigation instructions.)

Dirty Frag: Universal Linux LPE - allows any unprivileged local user to gain root access on a vulnerable Linux system - no patch available

Dirty Frag: Universal Linux LPE - allows any unprivileged local user to gain root access on a vulnerable Linux system - no patch available

GitHub - V4bel/dirtyfrag