Mitigation for Dirty Frag Linux local privilege escalation vulnerability

[Erulezz]

I have never done so many reboots in the last few weeks

 

[sysdev]

I have never done so many reboots in the last few weeks

I've had disasters with less reboots :/

 

[Driesp]

You can run this to fix without rebooting:

sysctl -w kernel.yama.ptrace_scope=3
echo 'kernel.yama.ptrace_scope=3' > /etc/sysctl.d/99-ptracenull.conf

 

[Richard G]

Looks like the new kernel updates are released, seen them on Alma 9 now.

 

[Ohm J]

There have many reboot in this month, all client now complain on midnight downtime

Last patch I will wait for next month to reboot. Because maybe there have other CVE coming. I'm tried.

 

[Richard G]

all client now complain on midnight downtime

Whahaha difficult clients then. I also reboot like 01.00 or 01.30 but downtime is maximum something like 3 minutes if it takes that long.
We got 2 vps, they don't even take 20 seconds.

Better complaining customers than a root hacked server.
I did them all last night, don't want a rooted server.