If this is verified, this is a very big deal. Root access on any shared computer. Additionally do we know what kernel versions and stable versions have the patch?
If this is verified, this is a very big deal. Root access on any shared computer. Additionally do we know what kernel versions and stable versions have the patch?
I just tested on my home server running ubuntu 24.04 LTS with newest kernel from repositories, got root.
Can Livepatch mitigate this or is it already? I don't know where to look this up.
I used the mitigation from this CVE report to turn off AF_ALG.
As far as mainline goes, only 7.0 and up have the patch already.