\n<\/p>\n
Follow ZDNET: <\/em>Add us as a favorite source<\/span><\/a><\/span> On Google.<\/em><\/p>\n according to Linus’s law<\/a>“Given enough attention, all bugs are shallow,” is fundamental to open source. <\/p>\n Unfortunately, thanks to AI bug-finding tools such as cloud mythos<\/a> And OpenAI Daybreak<\/a>There are AI engines behind most of them, and they are proving to be much faster at finding security problems than human errors. <\/p>\n Too: <\/strong>Linux is getting a security warning – why it was inevitable and I’m not worried<\/strong><\/p>\n So this is the latest serious Linux kernel vulnerability, Fragnesia<\/a>Has emerged. This is the third serious local origin fault in the last two weeks.<\/p>\n Following in the footsteps of Copy Fail and Dirty Frag, this page-cache corruption bug gives disadvantaged users a reliable path to full root control on affected systems. And what are those systems, you ask? According to AlmaLinux, Fragonia quickly takes root in all major distributions.<\/a> So, basically, All Linux distros can be targeted and successfully hacked.<\/a> Are we still having fun or what? <\/p>\n Too: <\/strong>Dirty Frag is a new Linux bug that’s putting your system at risk \u2013 and there’s no easy solution yet<\/strong><\/p>\n The bug was revealed this week<\/a> by AI Security Company Zelik<\/a>William Bowling and other researchers are using the company AI-Agent Software Auditing Tool, v12<\/a>. It works by abusing a logic bug in Linux XFRM (short for “transform”) esp-in-tcp<\/a> Subsystem for writing arbitrary bytes to the kernel page cache of read-only files, without requiring any race conditions. <\/p>\n it Local privilege opens the door to growth<\/a> And potentially container runs in a multi-tenant environment. <\/p>\n Unlike classic race-condition exploits, these vulnerabilities allow attackers to precisely corrupt file-backed pages without timing tricks, making attacks more reliable and easier to weaponize once proof-of-concept code is available. <\/p>\n Speaking of which, there already exists a proof-of-concept exploit. This creates a 256-entry lookup table that maps all possible keystream bytes to their corresponding non<\/a>. The attack then copies a malicious payload, which overwrites the first 192 bytes of the switch user command in the page cache with a short ELF stub that calls setresuid and calls a shell. <\/p>\n In other words, for those of you who are not Linux experts, this will immediately drop the attacker into a root shell. <\/p>\n This is bad, bad news. This means that a local user can obtain superuser (root) privileges. red hat<\/a> gives it a common vulnerability scoring system (CVSS) score 7.8<\/a>Which makes it a high-level security bug. <\/p>\n Too: <\/strong>This critical Linux vulnerability is putting millions of systems at risk – how to protect yourself<\/strong><\/p>\n Just as bad, while Fragnesia is technically a local privilege-escalation bug, its impact increases dramatically in modern cloud architectures that run large numbers of untrusted containers on a shared Linux kernel. <\/p>\n Here, if an attacker can run code in a container or restricted user account but still own the namespace and network stack, that person can gain full root access on the host and attack other users’ virtual machines (VMs) or containers from there. <\/p>\n Kernel developers and distribution maintainers are now working to harden the ESP-in-TCP code path, with proposed improvements focused on eliminating in-place changes on shared, file-backed pages and tightening segment management. an upstream Patch to cure Fragonia<\/a> Now available. But as of May 13, it is not currently shipping in any distro. <\/p>\n Too: <\/strong>Immutable Linux Offers Serious Security \u2013 Here Are Your 5 Best Options<\/strong><\/p>\n In the meantime, you can mitigate this by running the following commands as root: <\/p>\n # rmmod esp4 esp6 rxrpc <\/p>\n # printf ‘esp4 install \/bin\/falsenesp6 \/bin\/false installnrxrpc \/bin\/false installn’ > \/etc\/modprobe.d\/fragnesia.conf <\/p>\n However, if you do this, you will also be out ipsec<\/a>Which means your Linux Virtual Private Network (VPN) will not work. happy Happy joy joy. <\/p>\n \t \t \t \tZDNET Highlights <\/h3>\n
\n
Fragnesia takes root in all major distributions<\/h2>\n
Proof of concept exploitation exists<\/h2>\n
How to Prune Fragnesia<\/h2>\n