📰 Source: upgoat.net | Upgoat

✍️ Original author: SithEmpire

⬆️ score: 19

v/Linux · by u/SithEmpire

📝 Original content:

https://github.com/V4bel/dirtyfrag

As with my post about Copy Fail, prevention is quite simple. Definitely do it - this one is a simple C program which elevates to root if compiled and run on any modern system.

That GitHub page has a Mitigation section with a command which does everything needed. The breakdown is first to create a conf config file inside /etc/modprobe.d/ which blocks the modules esp4, esp6 and rxrpc:

install esp4 /bin/false install esp6 /bin/false install rxrpc /bin/false

Remove the modules, if they were loaded (usually not):

rmmod esp4 esp6 rxrpc

And an extra step on this one, clear the memory page cache (the exploit corrupts it):

echo 3 > /proc/sys/vm/drop_caches

Also as with Copy Fail, for me those were dormant modules which weren’t loaded and ought not impact much in being blocked. Use lsmod to view loaded modules.

The AI-powered vulnerability sweep continues - think of this as a very bad week for hackers, especially government ones.

This post was automatically imported by OratioRepostBot.