New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
ha funny guy.
If you are good, the VM runs as different user.
Well then yet again, a local prev exploit could fuck you.
What's safe nowadays?
The hypervisor has kernel components that can and do get exploited from time to time. After all, many instructions that trap #vmexit are emulated within the kernel. That's ring 0.
AlmaLinux OS: Dirty Frag vulnerability fix is ready for testing
https://almalinux.org/blog/2026-05-07-dirty-frag/
Thank god it's friday? Again?
Damn, last week 100 kernel updates and reboots (while the ubuntu repos were ddosed), now the same shit again starting the second updates are out and in October we will be at 6.8.0.480?
Boss, I'm calling in sick. It's sunny outside.
Yeah good idea to lock the backdoor of the chicken house.
sh -c "printf 'install esp4 /bin/false\ninstall esp6 /bin/false\ninstall rxrpc /bin/false\n' > /etc/modprobe.d/dirtyfrag.conf; rmmod esp4 esp6 rxrpc 2>/dev/null; echo 3 > /proc/sys/vm/drop_caches; true"
i'am using this for patch. when i test again is already patched
Looking forward to a great weekend
Windows Server 2003.
Solid. No LPE's or vulnerabilities in the wild
/s
https://ubuntu.com/security/CVE-2026-43284 still a 404 (12:03 UTC)
end is near.gif
A long shot... but... maybe... all those disclosures have anything to do with the uber-announced Claude Mythos?!
ok, 45 minutes later it is not a 404 anymore. So it's time to look out for a working mirror to be prepared.
Far too valuable to drop publicly. LPEs are common so they have little value to exploit brokers, which is why they get dropped publicly for internet credit, but a decent VM escape is worth $250,000+ so they're rarely even reported to the vendors.
https://ubuntu.com/blog/dirty-frag-linux-vulnerability-fixes-available
For anyone concerned about the Dirty Frag issue, first check whether the affected modules are even loaded before applying mitigations.
If the command returns nothing, those modules are not currently loaded on your system.
Most normal web hosting servers (Plesk/WHMCS/LAMP/etc.) likely won’t have them loaded unless using IPsec/VPN related features.
In that case, there’s usually no urgent need for the temporary module mitigation, though you should still install kernel security updates once available.
Debian Trixie Fixed
https://security-tracker.debian.org/tracker/CVE-2026-43284
https://security-tracker.debian.org/tracker/CVE-2026-43500
It doesn't matter if they're not currently loaded. The problem is that they will be autoloaded.
I tested this myself.
What now?
Assuming you're getting that because you have
CONFIG_MODULES=n, then:Edit: "9.3" wut. What's your
uname -sm8No luck either
Is that good or bad?
Well, you aren't affected by DirtyFrag, but NetBSD's security track record is not so great anyway.
Pheeeewww
Yeah, thats sadly true. I love the system but lack of manpower is quite the euphemism when it comes to the overall project.
Switch to DragonflyBSD! It'll be the Year of the HAMMER2 Filesystem™ any day now!
Hahaha, if they manage to do it before NetBSD implements 802.11n i might think about it
Correct, but the modules still won’t load by themselves unless something actually requests that functionality first.
On a typical web hosting server without IPsec/VPN usage, there usually isn’t anything triggering
esp4,esp6, orrxrpcduring normal operation.For extra hardening, if the modules are not loaded, you can temporarily do:
This prevents loading any new kernel modules until reboot. Just remember to reboot normally once patched kernel updates are installed.