Hmmm. #Debian is stepping on the gas with #Linux kernel updates these days.
-
Hmmm. #Debian is stepping on the gas with #Linux kernel updates these days. The obvious explanation is that they're dealing with the copy.fail security hole, but I think that's been mostly resolved ( https://security-tracker.debian.org/tracker/CVE-2026-31431 ).
Possibly copy.fail is the first of many security problems being discovered and patched.
1/3
-
Hmmm. #Debian is stepping on the gas with #Linux kernel updates these days. The obvious explanation is that they're dealing with the copy.fail security hole, but I think that's been mostly resolved ( https://security-tracker.debian.org/tracker/CVE-2026-31431 ).
Possibly copy.fail is the first of many security problems being discovered and patched.
1/3
@mpjgregoire Dirty Frag is hot on its heals.
-
Hmmm. #Debian is stepping on the gas with #Linux kernel updates these days. The obvious explanation is that they're dealing with the copy.fail security hole, but I think that's been mostly resolved ( https://security-tracker.debian.org/tracker/CVE-2026-31431 ).
Possibly copy.fail is the first of many security problems being discovered and patched.
1/3
From https://tracker.debian.org/pkg/linux
[2026-05-09] Accepted linux 6.12.86-1 (source) into proposed-updates
[2026-05-09] Accepted linux 7.0.4-1~bpo13+1 (source) into stable-backports
[2026-05-09] Accepted linux 6.12.86-1~bpo12+1 (source) into oldstable-backports
[2026-05-09] Accepted linux 6.1.170-3 (source) into oldstable-security
[2026-05-09] Accepted linux 6.1.170-2 (source) into oldstable-security
[2026-05-08] Accepted linux 6.12.86-1 (source) into stable-security
2/3 -
From https://tracker.debian.org/pkg/linux
[2026-05-09] Accepted linux 6.12.86-1 (source) into proposed-updates
[2026-05-09] Accepted linux 7.0.4-1~bpo13+1 (source) into stable-backports
[2026-05-09] Accepted linux 6.12.86-1~bpo12+1 (source) into oldstable-backports
[2026-05-09] Accepted linux 6.1.170-3 (source) into oldstable-security
[2026-05-09] Accepted linux 6.1.170-2 (source) into oldstable-security
[2026-05-08] Accepted linux 6.12.86-1 (source) into stable-security
2/3[2026-05-08] Accepted linux 5.10.251-4 (source) into oldoldstable-security
[2026-05-07] Accepted linux 7.0.4-1 (source) into unstable
[2026-05-07] Accepted linux 7.1~rc2-1~exp1 (source) into experimental
[2026-05-05] Accepted linux 6.19.14-1~bpo13+1 (source) into stable-backports
[2026-05-02] Accepted linux 6.1.170-1 (source) into oldstable-proposed-updates3/3
-
@mpjgregoire Dirty Frag is hot on its heals.
@virtuous_sloth Is that so? First I've heard of it.
-
Hmmm. #Debian is stepping on the gas with #Linux kernel updates these days. The obvious explanation is that they're dealing with the copy.fail security hole, but I think that's been mostly resolved ( https://security-tracker.debian.org/tracker/CVE-2026-31431 ).
Possibly copy.fail is the first of many security problems being discovered and patched.
1/3
@mpjgregoire It's yet another one:
Another Linux kernel vulnerability has been published under number CVE-2026-43284, nicknamed Dirty Frag.
Fixed kernels compiled by the Debian community have already been published for Debian 12 and 13 -
@virtuous_sloth Is that so? First I've heard of it.
@mpjgregoire Yup. And I think the person who found it (presumably using an LLM) posted about it without doing responsible disclosure, so patches or at least built kernels are not yet produced and the only thing to do is disable some kernel modules to mitigate the possibility of local privilege escalation.
-
Hmmm. #Debian is stepping on the gas with #Linux kernel updates these days. The obvious explanation is that they're dealing with the copy.fail security hole, but I think that's been mostly resolved ( https://security-tracker.debian.org/tracker/CVE-2026-31431 ).
Possibly copy.fail is the first of many security problems being discovered and patched.
1/3
@mpjgregoire There’s three kernel vulnerabilities that are being patched: Copy Fail, Dirty Frag and a third one I don’t know the name of.
There’s a lot of discussion about it on oss-security this month:
-
R relay@relay.mycrowd.ca shared this topic
