Dirty Frag: Early Disclosure Lets Linux Root on Major Distros
TL;DR Summary
A Linux local privilege escalation named 'Dirty Frag' was publicly disclosed early, enabling local users to obtain root by exploiting decryption fast paths in the esp4, esp6, and rxrpc kernel code; with no CVEs or patches yet due to the embargo break, a workaround exists to disable the affected modules via: sh -c "printf 'install esp4 /bin/false\ninstall esp6 /bin/false\ninstall rxrpc /bin/false\n' > /etc/modprobe.d/dirtyfrag.conf; rmmod esp4 esp6 rxrpc 2>/dev/null; true"; Alma Linux has released early patches for testing, and oss-security has more details; this situation means risk on most major distros until patches are issued.
- Dirty Frag Vulnerability Made Public Early: Root Privilege On All Distributions Phoronix
- How Cloudflare responded to the “Copy Fail” Linux vulnerability The Cloudflare Blog
- ‘Copy Fail’ is a real Linux security crisis wrapped in AI slop CyberScoop
- CISA Warning: High-Severity Linux Flaw Puts Unpatched Systems at Risk TechRepublic
- Dirty Frag exploit leaks out, gives immediate root access on most Linux machines since 2017, no patches available, no warning given — Copy Fail-like vulnerability had its embargo broken Tom's Hardware
Reading Insights
Total Reads
0
Unique Readers
13
Time Saved
2 min
vs 3 min read
Condensed
79%
448 → 94 words
Want the full story? Read the original article
Read on Phoronix