#fragnesia — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #fragnesia, aggregated by home.social.
-
#Linux got bitten by crypto-related page cache vulnerabilities in recent weeks. They had rather boring names: #CopyFail #DirtyFrag #Fragnesia
The #FreeBSD community is fixing this by naming their own bug of this class #BUMSRAKETE.
(Now, if you ran the name through a translator and are questioning its legitimacy: It's as real as the person that inspired the bug report's style, unfortunately.)
-
#Linux got bitten by crypto-related page cache vulnerabilities in recent weeks. They had rather boring names: #CopyFail #DirtyFrag #Fragnesia
The #FreeBSD community is fixing this by naming their own bug of this class #BUMSRAKETE.
(Now, if you ran the name through a translator and are questioning its legitimacy: It's as real as the person that inspired the bug report's style, unfortunately.)
-
#Linux got bitten by crypto-related page cache vulnerabilities in recent weeks. They had rather boring names: #CopyFail #DirtyFrag #Fragnesia
The #FreeBSD community is fixing this by naming their own bug of this class #BUMSRAKETE.
(Now, if you ran the name through a translator and are questioning its legitimacy: It's as real as the person that inspired the bug report's style, unfortunately.)
-
#Linux got bitten by crypto-related page cache vulnerabilities in recent weeks. They had rather boring names: #CopyFail #DirtyFrag #Fragnesia
The #FreeBSD community is fixing this by naming their own bug of this class #BUMSRAKETE.
(Now, if you ran the name through a translator and are questioning its legitimacy: It's as real as the person that inspired the bug report's style, unfortunately.)
-
#Linux got bitten by crypto-related page cache vulnerabilities in recent weeks. They had rather boring names: #CopyFail #DirtyFrag #Fragnesia
The #FreeBSD community is fixing this by naming their own bug of this class #BUMSRAKETE.
(Now, if you ran the name through a translator and are questioning its legitimacy: It's as real as the person that inspired the bug report's style, unfortunately.)
-
Aktuelle Sicherheitslage - CopyFail und Co.
Aktuelle Sicherheitslücken wie: CopyFail, DirtyFrag, Fragnesia und ssh-keysign-pwn verunsichern Linux-Nutzer:innen. Dieser Artikel ordnet ein und gibt Entwarnung.
— von @ralfhersel im @gnulinux🔐 https://gnulinux.ch/aktuelle-sicherheitslage
#linux #itsicherheit #copyfail #dirtyfrag #fragnesia #sshkeysignpwn #entwarnung #opensource #software #itsec
-
Aktuelle Sicherheitslage - CopyFail und Co.
Aktuelle Sicherheitslücken wie: CopyFail, DirtyFrag, Fragnesia und ssh-keysign-pwn verunsichern Linux-Nutzer:innen. Dieser Artikel ordnet ein und gibt Entwarnung.
— von @ralfhersel im @gnulinux🔐 https://gnulinux.ch/aktuelle-sicherheitslage
#linux #itsicherheit #copyfail #dirtyfrag #fragnesia #sshkeysignpwn #entwarnung #opensource #software #itsec
-
Aktuelle Sicherheitslage - CopyFail und Co.
Aktuelle Sicherheitslücken wie: CopyFail, DirtyFrag, Fragnesia und ssh-keysign-pwn verunsichern Linux-Nutzer:innen. Dieser Artikel ordnet ein und gibt Entwarnung.
— von @ralfhersel im @gnulinux🔐 https://gnulinux.ch/aktuelle-sicherheitslage
#linux #itsicherheit #copyfail #dirtyfrag #fragnesia #sshkeysignpwn #entwarnung #opensource #software #itsec
-
Aktuelle Sicherheitslage - CopyFail und Co.
Aktuelle Sicherheitslücken wie: CopyFail, DirtyFrag, Fragnesia und ssh-keysign-pwn verunsichern Linux-Nutzer:innen. Dieser Artikel ordnet ein und gibt Entwarnung.
— von @ralfhersel im @gnulinux🔐 https://gnulinux.ch/aktuelle-sicherheitslage
#linux #itsicherheit #copyfail #dirtyfrag #fragnesia #sshkeysignpwn #entwarnung #opensource #software #itsec
-
Aktuelle Sicherheitslage - CopyFail und Co.
Aktuelle Sicherheitslücken wie: CopyFail, DirtyFrag, Fragnesia und ssh-keysign-pwn verunsichern Linux-Nutzer:innen. Dieser Artikel ordnet ein und gibt Entwarnung.
— von @ralfhersel im @gnulinux🔐 https://gnulinux.ch/aktuelle-sicherheitslage
#linux #itsicherheit #copyfail #dirtyfrag #fragnesia #sshkeysignpwn #entwarnung #opensource #software #itsec
-
Updated info on fixes for #DirtyFrag and #Fragnesia at https://sketchesfromahomelab.com/articles/2026/05/14/Cavalcade_of_Copy_Fails/
- #Debian: Fragnesia FIXED
- #RHEL: Dirty Frag & Fragnesia FIXED#copyfail #cve #cve_2026_43284 #cve_2026_43500 #cve_2026_46300 #dirtyfrag #fragnesia #linux #local_privilege_escalation #security
-
Updated info on fixes for #DirtyFrag and #Fragnesia at https://sketchesfromahomelab.com/articles/2026/05/14/Cavalcade_of_Copy_Fails/
- #Debian: Fragnesia FIXED
- #RHEL: Dirty Frag & Fragnesia FIXED#copyfail #cve #cve_2026_43284 #cve_2026_43500 #cve_2026_46300 #dirtyfrag #fragnesia #linux #local_privilege_escalation #security
-
Updated info on fixes for #DirtyFrag and #Fragnesia at https://sketchesfromahomelab.com/articles/2026/05/14/Cavalcade_of_Copy_Fails/
- #Debian: Fragnesia FIXED
- #RHEL: Dirty Frag & Fragnesia FIXED#copyfail #cve #cve_2026_43284 #cve_2026_43500 #cve_2026_46300 #dirtyfrag #fragnesia #linux #local_privilege_escalation #security
-
Updated info on fixes for #DirtyFrag and #Fragnesia at https://sketchesfromahomelab.com/articles/2026/05/14/Cavalcade_of_Copy_Fails/
- #Debian: Fragnesia FIXED
- #RHEL: Dirty Frag & Fragnesia FIXED#copyfail #cve #cve_2026_43284 #cve_2026_43500 #cve_2026_46300 #dirtyfrag #fragnesia #linux #local_privilege_escalation #security
-
Aktuelle Sicherheitslage - CopyFail und Co.
Aktuelle Sicherheitslücken wie: CopyFail, DirtyFrag, Fragnesia und ssh-keysign-pwn verunsichern Linux-Nutzer:innen. Dieser Artikel ordnet ein und gibt Entwarnung.
-
Aktuelle Sicherheitslage - CopyFail und Co.
Aktuelle Sicherheitslücken wie: CopyFail, DirtyFrag, Fragnesia und ssh-keysign-pwn verunsichern Linux-Nutzer:innen. Dieser Artikel ordnet ein und gibt Entwarnung.
-
Aktuelle Sicherheitslage - CopyFail und Co.
Aktuelle Sicherheitslücken wie: CopyFail, DirtyFrag, Fragnesia und ssh-keysign-pwn verunsichern Linux-Nutzer:innen. Dieser Artikel ordnet ein und gibt Entwarnung.
-
Aktuelle Sicherheitslage - CopyFail und Co.
Aktuelle Sicherheitslücken wie: CopyFail, DirtyFrag, Fragnesia und ssh-keysign-pwn verunsichern Linux-Nutzer:innen. Dieser Artikel ordnet ein und gibt Entwarnung.
-
Aktuelle Sicherheitslage - CopyFail und Co.
Aktuelle Sicherheitslücken wie: CopyFail, DirtyFrag, Fragnesia und ssh-keysign-pwn verunsichern Linux-Nutzer:innen. Dieser Artikel ordnet ein und gibt Entwarnung.
-
-
Has anybody an explanation why this time it takes longer to patch the kernel for fragnesia esp. for bookworm and trixie in debian?
I get that sid is patched first because it's unstable. e: trixie is now fixed, toohttps://security-tracker.debian.org/tracker/CVE-2026-46300
It's NOT a complaint but getting to know the processes.
Thanks!
e: and a huge thanks to the people maintaining debian and the other distributions ❤️ -
Has anybody an explanation why this time it takes longer to patch the kernel for fragnesia esp. for bookworm and trixie in debian?
I get that sid is patched first because it's unstable. e: trixie is now fixed, toohttps://security-tracker.debian.org/tracker/CVE-2026-46300
It's NOT a complaint but getting to know the processes.
Thanks!
e: and a huge thanks to the people maintaining debian and the other distributions ❤️ -
Has anybody an explanation why this time it takes longer to patch the kernel for fragnesia esp. for bookworm and trixie in debian?
I get that sid is patched first because it's unstable. e: trixie is now fixed, toohttps://security-tracker.debian.org/tracker/CVE-2026-46300
It's NOT a complaint but getting to know the processes.
Thanks!
e: and a huge thanks to the people maintaining debian and the other distributions ❤️ -
Has anybody an explanation why this time it takes longer to patch the kernel for fragnesia esp. for bookworm and trixie in debian?
I get that sid is patched first because it's unstable. e: trixie is now fixed, toohttps://security-tracker.debian.org/tracker/CVE-2026-46300
It's NOT a complaint but getting to know the processes.
Thanks!
e: and a huge thanks to the people maintaining debian and the other distributions ❤️ -
Has anybody an explanation why this time it takes longer to patch the kernel for fragnesia esp. for bookworm and trixie in debian?
I get that sid is patched first because it's unstable. e: trixie is now fixed, toohttps://security-tracker.debian.org/tracker/CVE-2026-46300
It's NOT a complaint but getting to know the processes.
Thanks!
e: and a huge thanks to the people maintaining debian and the other distributions ❤️ -
#Debian still without a #fragnesia patch. Not funny anmore!
(I know that there is a mitigation for systems without ipsec)
https://security-tracker.debian.org/tracker/CVE-2026-46300 -
#Debian still without a #fragnesia patch. Not funny anmore!
(I know that there is a mitigation for systems without ipsec)
https://security-tracker.debian.org/tracker/CVE-2026-46300 -
#Debian still without a #fragnesia patch. Not funny anmore!
(I know that there is a mitigation for systems without ipsec)
https://security-tracker.debian.org/tracker/CVE-2026-46300 -
#Debian still without a #fragnesia patch. Not funny anmore!
(I know that there is a mitigation for systems without ipsec)
https://security-tracker.debian.org/tracker/CVE-2026-46300 -
On Late Night Linux Episode 386, @joeress, @felimwhiteley, and @andybalaam discuss #CopyFail, #DirtyFrag, #Fragnesia and the proposed emergency killswitch in the kernel:
-
On Late Night Linux Episode 386, @joeress, @felimwhiteley, and @andybalaam discuss #CopyFail, #DirtyFrag, #Fragnesia and the proposed emergency killswitch in the kernel:
-
On Late Night Linux Episode 386, @joeress, @felimwhiteley, and @andybalaam discuss #CopyFail, #DirtyFrag, #Fragnesia and the proposed emergency killswitch in the kernel:
-
On Late Night Linux Episode 386, @joeress, @felimwhiteley, and @andybalaam discuss #CopyFail, #DirtyFrag, #Fragnesia and the proposed emergency killswitch in the kernel:
-
Once again the cluster has been upgraded to catch the latest fixes for #DirtyFrag and #Fragnesia. I ought to get to work on that Ansible playbook.
-
We've also posted about our #CopyFail, #DirtyFrag, #Fragnesia handling on the #Gentoo website:
https://www.gentoo.org/news/2026/05/19/copy-fail-fragnesia-vulnerabilities.html
…and yes, another secfix round coming.
CC @wariat
-
We've also posted about our #CopyFail, #DirtyFrag, #Fragnesia handling on the #Gentoo website:
https://www.gentoo.org/news/2026/05/19/copy-fail-fragnesia-vulnerabilities.html
…and yes, another secfix round coming.
CC @wariat
-
We've also posted about our #CopyFail, #DirtyFrag, #Fragnesia handling on the #Gentoo website:
https://www.gentoo.org/news/2026/05/19/copy-fail-fragnesia-vulnerabilities.html
…and yes, another secfix round coming.
CC @wariat
-
We've also posted about our #CopyFail, #DirtyFrag, #Fragnesia handling on the #Gentoo website:
https://www.gentoo.org/news/2026/05/19/copy-fail-fragnesia-vulnerabilities.html
…and yes, another secfix round coming.
CC @wariat
-
We've also posted about our #CopyFail, #DirtyFrag, #Fragnesia handling on the #Gentoo website:
https://www.gentoo.org/news/2026/05/19/copy-fail-fragnesia-vulnerabilities.html
…and yes, another secfix round coming.
CC @wariat
-
Updated info on #Linux distro fixes for #DirtyFrag and #Fragnesia https://sketchesfromahomelab.com/articles/2026/05/14/Cavalcade_of_Copy_Fails/
- #AlmaLinux - #Fragnesia FIXED
- #Mageia - #DirtyFrag FIXED (thanks @maat !)
- Rocky - #Fragnesia FIXED
- SUSE - #Fragnesia FIXED for some products, others still pending#linux #security #copyfail #cve #cve_2026_43284 #cve_2026_43500 #cve_2026_46500 #dirtyfrag #fragnesia #copyfail2
-
Updated info on #Linux distro fixes for #DirtyFrag and #Fragnesia https://sketchesfromahomelab.com/articles/2026/05/14/Cavalcade_of_Copy_Fails/
- #AlmaLinux - #Fragnesia FIXED
- #Mageia - #DirtyFrag FIXED (thanks @maat !)
- Rocky - #Fragnesia FIXED
- SUSE - #Fragnesia FIXED for some products, others still pending#linux #security #copyfail #cve #cve_2026_43284 #cve_2026_43500 #cve_2026_46500 #dirtyfrag #fragnesia #copyfail2
-
Updated info on #Linux distro fixes for #DirtyFrag and #Fragnesia https://sketchesfromahomelab.com/articles/2026/05/14/Cavalcade_of_Copy_Fails/
- #AlmaLinux - #Fragnesia FIXED
- #Mageia - #DirtyFrag FIXED (thanks @maat !)
- Rocky - #Fragnesia FIXED
- SUSE - #Fragnesia FIXED for some products, others still pending#linux #security #copyfail #cve #cve_2026_43284 #cve_2026_43500 #cve_2026_46500 #dirtyfrag #fragnesia #copyfail2
-
Updated info on #Linux distro fixes for #DirtyFrag and #Fragnesia https://sketchesfromahomelab.com/articles/2026/05/14/Cavalcade_of_Copy_Fails/
- #AlmaLinux - #Fragnesia FIXED
- #Mageia - #DirtyFrag FIXED (thanks @maat !)
- Rocky - #Fragnesia FIXED
- SUSE - #Fragnesia FIXED for some products, others still pending#linux #security #copyfail #cve #cve_2026_43284 #cve_2026_43500 #cve_2026_46500 #dirtyfrag #fragnesia #copyfail2
-
Please read this important update from #CheckPoint:
Check Point Response to CVE-2026-31431 (Copy Fail), CVE-2026-43284, CVE-2026-43500 (Dirty Frag) and CVE-2026-46300 (Fragnesia)
-
Please read this important update from #CheckPoint:
Check Point Response to CVE-2026-31431 (Copy Fail), CVE-2026-43284, CVE-2026-43500 (Dirty Frag) and CVE-2026-46300 (Fragnesia)
-
Please read this important update from #CheckPoint:
Check Point Response to CVE-2026-31431 (Copy Fail), CVE-2026-43284, CVE-2026-43500 (Dirty Frag) and CVE-2026-46300 (Fragnesia)
-
Please read this important update from #CheckPoint:
Check Point Response to CVE-2026-31431 (Copy Fail), CVE-2026-43284, CVE-2026-43500 (Dirty Frag) and CVE-2026-46300 (Fragnesia)
-
Please read this important update from #CheckPoint:
Check Point Response to CVE-2026-31431 (Copy Fail), CVE-2026-43284, CVE-2026-43500 (Dirty Frag) and CVE-2026-46300 (Fragnesia)
-
Is it safe to update packages on OpenSUSE Tumbleweed with the LPEs unpatched?
Running kernel 7.0.6-1-default
I have two third-party repos enabled: packman (for codecs) and librewolf.
#Fragnesia #DirtyFrag -
I've finally finished pushing the latest update for #Gentoo Distribution Kernels, and requested their stabilization. This includes upstream releases 7.0.9, 6.18.32, 6.12.90 and 6.6.140; and Gentoo patch bumps 6.1.173_p1, 5.15.207_p1 and 5.10.256_p1.
All of these contain the v5 #Fragnesia patch. And yes, while the exploit is in the wild, upstream still hasn't merged a fix to the mainline kernel, let alone all the LTS branches. Of course, the patch keeps covering more holes, but it would really be preferable to do that as a followup instead of leaving people vulnerable and forcing us to keep rebasing it.
They also include a few reverts in 6.18 and 6.6 for broken PowerPC backports that upstream didn't apparently test. 🤷
We're doing our best, but I'd still recommend running the latest 7.0.x kernel, or LTS 6.18.x, because upstream is far from reliable with the backports.
-
I've finally finished pushing the latest update for #Gentoo Distribution Kernels, and requested their stabilization. This includes upstream releases 7.0.9, 6.18.32, 6.12.90 and 6.6.140; and Gentoo patch bumps 6.1.173_p1, 5.15.207_p1 and 5.10.256_p1.
All of these contain the v5 #Fragnesia patch. And yes, while the exploit is in the wild, upstream still hasn't merged a fix to the mainline kernel, let alone all the LTS branches. Of course, the patch keeps covering more holes, but it would really be preferable to do that as a followup instead of leaving people vulnerable and forcing us to keep rebasing it.
They also include a few reverts in 6.18 and 6.6 for broken PowerPC backports that upstream didn't apparently test. 🤷
We're doing our best, but I'd still recommend running the latest 7.0.x kernel, or LTS 6.18.x, because upstream is far from reliable with the backports.
-
I've finally finished pushing the latest update for #Gentoo Distribution Kernels, and requested their stabilization. This includes upstream releases 7.0.9, 6.18.32, 6.12.90 and 6.6.140; and Gentoo patch bumps 6.1.173_p1, 5.15.207_p1 and 5.10.256_p1.
All of these contain the v5 #Fragnesia patch. And yes, while the exploit is in the wild, upstream still hasn't merged a fix to the mainline kernel, let alone all the LTS branches. Of course, the patch keeps covering more holes, but it would really be preferable to do that as a followup instead of leaving people vulnerable and forcing us to keep rebasing it.
They also include a few reverts in 6.18 and 6.6 for broken PowerPC backports that upstream didn't apparently test. 🤷
We're doing our best, but I'd still recommend running the latest 7.0.x kernel, or LTS 6.18.x, because upstream is far from reliable with the backports.
-
I've finally finished pushing the latest update for #Gentoo Distribution Kernels, and requested their stabilization. This includes upstream releases 7.0.9, 6.18.32, 6.12.90 and 6.6.140; and Gentoo patch bumps 6.1.173_p1, 5.15.207_p1 and 5.10.256_p1.
All of these contain the v5 #Fragnesia patch. And yes, while the exploit is in the wild, upstream still hasn't merged a fix to the mainline kernel, let alone all the LTS branches. Of course, the patch keeps covering more holes, but it would really be preferable to do that as a followup instead of leaving people vulnerable and forcing us to keep rebasing it.
They also include a few reverts in 6.18 and 6.6 for broken PowerPC backports that upstream didn't apparently test. 🤷
We're doing our best, but I'd still recommend running the latest 7.0.x kernel, or LTS 6.18.x, because upstream is far from reliable with the backports.
-
I've finally finished pushing the latest update for #Gentoo Distribution Kernels, and requested their stabilization. This includes upstream releases 7.0.9, 6.18.32, 6.12.90 and 6.6.140; and Gentoo patch bumps 6.1.173_p1, 5.15.207_p1 and 5.10.256_p1.
All of these contain the v5 #Fragnesia patch. And yes, while the exploit is in the wild, upstream still hasn't merged a fix to the mainline kernel, let alone all the LTS branches. Of course, the patch keeps covering more holes, but it would really be preferable to do that as a followup instead of leaving people vulnerable and forcing us to keep rebasing it.
They also include a few reverts in 6.18 and 6.6 for broken PowerPC backports that upstream didn't apparently test. 🤷
We're doing our best, but I'd still recommend running the latest 7.0.x kernel, or LTS 6.18.x, because upstream is far from reliable with the backports.
-
The Register quoted Wiz putting it plainly: “The Linux networking stack is starting to look less like infrastructure and more like a root exploit vending machine.”
https://byteiota.com/fragnesia-cve-2026-46300-dirty-frag-patch-linux-root-exploit/
-
The Register quoted Wiz putting it plainly: “The Linux networking stack is starting to look less like infrastructure and more like a root exploit vending machine.”
https://byteiota.com/fragnesia-cve-2026-46300-dirty-frag-patch-linux-root-exploit/
-
The Register quoted Wiz putting it plainly: “The Linux networking stack is starting to look less like infrastructure and more like a root exploit vending machine.”
https://byteiota.com/fragnesia-cve-2026-46300-dirty-frag-patch-linux-root-exploit/
-
The Register quoted Wiz putting it plainly: “The Linux networking stack is starting to look less like infrastructure and more like a root exploit vending machine.”
https://byteiota.com/fragnesia-cve-2026-46300-dirty-frag-patch-linux-root-exploit/
-
The Register quoted Wiz putting it plainly: “The Linux networking stack is starting to look less like infrastructure and more like a root exploit vending machine.”
https://byteiota.com/fragnesia-cve-2026-46300-dirty-frag-patch-linux-root-exploit/
-
Hm #Debian hat immer noch keinen #fragnesia fix.
https://security-tracker.debian.org/tracker/CVE-2026-46300