In these situations, the vulnerability is still present, but the practical risk of exploitation is minimal because no untrusted user can execute local commands.

Interim fix

...

sudo sh -c "printf 'install esp4 /bin/false\ninstall esp6 /bin/false\ninstall rxrpc /bin/false\n' > /etc/modprobe.d/dirtyfrag.conf ; rmmod esp4 esp6 rxrpc 2>/dev/null"

No output is expected.

Interim fix for Rocky 9

sudo sh -c "printf 'install esp4 /bin/false\ninstall esp6 /bin/false\ninstall rxrpc /bin/false\n' > /etc/modprobe.d/dirtyfrag.conf ; rmmod esp4 esp6 rxrpc 2>/dev/null"

No output is expected.

Interim fix for Ubuntu 22.04

TBD

...

This is valid for Rocky 8, Rocky9, Ubuntu22.04, Ubuntu24.04
sudo sh -c "printf 'install esp4 /bin/false\ninstall esp6 /bin/false\ninstall rxrpc /bin/false\n' > /etc/modprobe.d/dirtyfrag.conf ; rmmod esp4 esp6 rxrpc 2>/dev/null"
No output is expected.

Space shortcuts

Blog

Versions Compared

Old Version 11

New Version 12

Key

Interim fix

Interim fix for Rocky 9

Interim fix for Ubuntu 22.04

This is valid for Rocky 8, Rocky9, Ubuntu22.04, Ubuntu24.04
sudo sh -c "printf 'install esp4 /bin/false\ninstall esp6 /bin/false\ninstall rxrpc /bin/false\n' > /etc/modprobe.d/dirtyfrag.conf ; rmmod esp4 esp6 rxrpc 2>/dev/null"
No output is expected.

Space shortcuts

Blog

Page History

Versions Compared

Old Version 11

New Version 12

Key

Interim fix

Interim fix for Rocky 9

Interim fix for Ubuntu 22.04

This is valid for Rocky 8, Rocky9, Ubuntu22.04, Ubuntu24.04sudo sh -c "printf 'install esp4 /bin/false\ninstall esp6 /bin/false\ninstall rxrpc /bin/false\n' > /etc/modprobe.d/dirtyfrag.conf ; rmmod esp4 esp6 rxrpc 2>/dev/null"No output is expected.

This is valid for Rocky 8, Rocky9, Ubuntu22.04, Ubuntu24.04
sudo sh -c "printf 'install esp4 /bin/false\ninstall esp6 /bin/false\ninstall rxrpc /bin/false\n' > /etc/modprobe.d/dirtyfrag.conf ; rmmod esp4 esp6 rxrpc 2>/dev/null"
No output is expected.