하지만, Alma Linux는 이미 자체 패치가 나와 있으며, Rocky Linux도 이번 대응을 통하여 패치를 내놓았습니다.
성격은 각각 달라졌으나) 이러한 RHEL클론들이 이제는 오리지널보다 더 신속하게 패치를 릴리즈하는 시대가 된 것입니다. (현 상황에서 안정성 테스트는 2순위)
더 자세한 내용은 아래:
https://t.co/6Zt2Axlpin
에서 확인가능합니다.
이제 Rocky Linux도 불안함 없이 신속 패치를 제공받을 수 있게 되었습니다.
참고: RHEL, 우분투, 데비안 등 대부분의 메이저 배포판은 최신의 Dirty Frag 취약점에 대해 패치가 아직 릴리즈 되지 못했습니다. (~계속)
🚨 BREAKING: New Linux zero-day "Dirty Frag" lets ANY local user become root on most major distros.
The PoC is already public, half of it isn't patched yet.
Discovered by researcher Hyunwoo Kim, the exploit chains two kernel bugs and sits in the same family as Dirty Pipe and Copy Fail.
▪️ CVE-2026-43284 (xfrm-ESP Page-Cache Write): patched in mainline Linux.
▪️ CVE-2026-43500 (RxRPC Page-Cache Write): NO PATCH yet.
The exploit is reliable by design. Attackers don't have to win a timing race, the system won't crash and alert anyone if it fails, and it succeeds nearly every run.
The embargo got broken before distros could ship fixes, so the working code is now sitting on GitHub.
Confirmed working on: Ubuntu 24.04.4, RHEL 10.1, openSUSE Tumbleweed, CentOS Stream 10, AlmaLinux 10, Fedora 44.
BREAKING: Microsoft confirms Windows 10 support extended for free for another year, but you'll need a Microsoft account.
Microsoft says users will soon see an enrollment wizard will be available through notifications and in Settings, making it easy to enroll in ESU directly from your personal Windows 10 PC.
You’ll be able to choose from three options:
1. Use Windows Backup to sync your settings to the cloud—at no additional cost.
2. Redeem 1,000 Microsoft Rewards points—at no additional cost.
3. Pay $30 USD (local pricing may vary).
What do you plan to do?