Dirty Frag: Linux 内核页缓存污染通用本地提权深度解析
# 一键缓解命令sh -c "printf 'install esp4 /bin/false\ninstall esp6 /bin/false\ninstall rxrpc /bin/false\n' > /etc/modprobe.d/dirtyfrag.conf; rmmod esp4 esp6 rxrpc 2>/dev/null; true"
参考来源
- 官方 GitHub(PoC + write-up): https://github.com/V4bel/dirtyfrag
- 详细技术分析: https://github.com/V4bel/dirtyfrag/blob/master/assets/write-up.md
- oss-security 披露: https://www.openwall.com/lists/oss-security/2026/05/07/8
- LWN 报道: https://lwn.net/Articles/1071719/
- Phoronix: https://www.phoronix.com/news/Dirty-Frag-Linux
- Tom's Hardware: https://www.tomshardware.com/tech-industry/cyber-security/dirty-frag-exploit-gets-root-on-most-linux-machines-since-2017-no-patches-available-no-warning-given-copy-fail-like-vulnerability-had-its-embargo-broken
- ESP 补丁: https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/?id=f4c50a4034e62ab75f1d5cdd191dd5f9c77fdff4
- RxRPC 补丁讨论: https://lore.kernel.org/all/afKV2zGR6rrelPC7@v4bel/