News: 0001632867

  ARM Give a man a fire and he's warm for a day, but set fire to him and he's warm for the rest of his life (Terry Pratchett, Jingo)

Linux 7.0.6 Released To Finish Mitigating the Dirty Frag Vulnerability

([Linux Kernel] 9 Minutes Ago Linux 7.0.6)


Linux 7.0.6 is out as stable this morning to finish mitigating the Dirty Frag vulnerability that was made public last week.

The embargo was broken on Dirty Frag last week ahead of schedule and thus proper fixes for the Linux kernel were yet in place for taking care of this local privilege escalation issue. [1]Dirty Frag makes it easy to go root on all Linux distributions but thankfully Linux 7.0.6 is now out to fully resolve Dirty Frag.

The lone patch making up Linux 7.0.6 is " rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present " for fixing an RXRPC issue from 2019.

In addition to Linux 7.0.6 stable, the Linux 6.18.29 LTS kernel was also released today with the sole change being this same patch from Hyunwoo Kim for resolving Dirty Frag.

More background information on Dirty Frag and some temporary workarounds for bypassing this vulnerability can be found via the Dirty Frag [2]GitHub repository .



[1] https://www.phoronix.com/news/Dirty-Frag-Linux

[2] https://github.com/V4bel/dirtyfrag



The Worst Prison Guards
The largest number of convicts ever to escape simultaneously from a
maximum security prison is 124. This record is held by Alcoente Prison,
near Lisbon in Portugal.
During the weeks leading up to the escape in July 1978 the prison
warders had noticed that attendances had fallen at film shows which
included "The Great Escape", and also that 220 knives and a huge quantity
of electric cable had disappeared. A guard explained, "Yes, we were
planning to look for them, but never got around to it." The warders had
not, however, noticed the gaping holes in the wall because they were
"covered with posters". Nor did they detect any of the spades, chisels,
water hoses and electric drills amassed by the inmates in large quantities.
The night before the breakout one guard had noticed that of the 36
prisoners in his block only 13 were present. He said this was "normal"
because inmates sometimes missed roll-call or hid, but usually came back
the next morning.
"We only found out about the escape at 6:30 the next morning when
one of the prisoners told us," a warder said later. [...] When they
eventually checked, the prison guards found that exactly half of the gaol's
population was missing. By way of explanation the Justice Minister, Dr.
Santos Pais, claimed that the escape was "normal" and part of the
"legitimate desire of the prisoner to regain his liberty."
-- Stephen Pile, "The Book of Heroic Failures"