6 comments

[ 3.4 ms ] story [ 25.4 ms ] thread
How much pain must there be until people realize we actually do need memory safety?
sysctl kernel.unprivileged_userns_clone=1 keeps on giving.
Does anyone know how to mitigate this one? Is it sufficient to disable the esp4/esp6/rxrpc modules?
People are blaming the wrong guy for breaking the embargo but via this blog post [1]:

> on 2026-05-05 Steffen Klassert pushed f4c50a4034 to netdev/net.git with Cc: stable@vger.kernel.org.

Once the fix is out it's usual for researchers to race to make the first exploit out of it.

[1] https://afflicted.sh/blog/posts/copy-fail-2.html