Can't wait for one that'll work on Android so I can maybe root some otherwise useless old phones
this post was submitted on 07 May 2026
195 points (98.0% liked)
Linux
65244 readers
752 users here now
From Wikipedia, the free encyclopedia
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.
Rules
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.
- No misinformation
- No NSFW content
- No hate speech, bigotry, etc
Related Communities
Community icon by Alpár-Etele Méder, licensed under CC BY 3.0
founded 7 years ago
MODERATORS
What would you use the old phones for out of curiosity?
I'm keen to put PostmarketOS on them all and build a Kubernetes cluster. Just don't ask me what I'm going to run on it!
A middle finger to those you're jailbreaking from.
I'm not the person you replied to, but I would love to have more ARM hardware for running tests on. A lot of what I write needs to be separately tested on each architecture.
I've encountered a couple of people who use them as remote cameras to observe their 3D printers. That suggests a bunch of other possibilities for things you want to be able to watch or listen to without standing over them and without buying an extra webcam to cover what might be a temporary need.
They are less expensive.
EDIT:
Sorry, I misread the parent comment.
You would use them for literally anything you typically or potentially could use a phone for.
If you are not playing video games on your phone... there is basically no common reason to have a top spec brand new phone.
What do I want my phone to do?
Make calls, send messages, run a web browser, check emails, take a picture or video every once in a while, act as a notepad, check a weather forecast, have some map explorer, use some entirely 2D proprietary apps for things like... groceries or hailing a ride or checking my bank balance.
Pretty sure that right there is about 80% of people's phone use case.
You do not need top spec hardware to do any of that.
You have the gaming thing to do the gaming stuff.
load more comments
(1 replies)
Ok this is the first time I try one of these exploits and it works on my system, I'm currently very spooked.
On the other hand, this may allow me to root my LG WebOS TV?
Now that i Didn't consider
load more comments
(1 replies)
In the 90s I compiled all my kernels at home from source with just the drivers I needed. Only installed the packages I needed. Only enabled the services I needed. The Unix way. When the kernel added modules I was still only compiling a subset and generally loading them manually.
Obviously that doesn't work for most users and distros sensibly started shipping with modules compiled for practically every need. Usually when I view distro security alerts they are for packages I don't install. But I have all these damn kernel modules just waiting to automatically load. I know I can blacklist them individually but I wonder if there is a way to profile the modules I use and use a deny all/whitelist approach instead?
modprobed-db can create a profile of the kernel modules that get loaded by your system over time. You can feed that directly into make localmodconfig to build a kernel that only includes those modules, or use the data to build a modprobe whitelist.
Hm? Somehow, lemmy.zip messed up the proxying, (clickable link)? Good thing you've pasted it plaintext.
load more comments
(2 replies)
load more comments
(2 replies)
Good to see these exploits being found and worked on
This was leaked early. There is a mitigation (see link for confirmation):
sh -c "printf 'install esp4 /bin/false\ninstall esp6 /bin/false\ninstall rxrpc /bin/false\n' > /etc/modprobe.d/dirtyfrag.conf; rmmod esp4 esp6 rxrpc 2>/dev/null; true"If anyone's curious, here's the leaker's reasoning: https://www.openwall.com/lists/oss-security/2026/05/07/12
Basically he had no prior knowledge of the vulnerability, he saw the patch go in and wrote a PoC based on that.
load more comments
(1 replies)
Update: Kernel 7.0.5 just released
Fixes: cac2661c53f3 ("esp4: Avoid skb_cow_data whenever possible")
Fixes: 03e2a30f6a27 ("esp6: Avoid skb_cow_data whenever possible")
Fixes: 7da0dde68486 ("ip, udp: Support MSG_SPLICE_PAGES")
Fixes: 6d8192bd69bb ("ip6, udp6: Support MSG_SPLICE_PAGES")
that kernel release (which most distros have still not shipped yet) fixes only one of the two vulnerabilities (CVE-2026-43284); afaik even upstream still doesn't have a patch for the second one (CVE-2026-43500) at this time.
(for people relying on Linux privilege separation, here are mitigation instructions.)
It was patched in almalinux though, and it was how this exploit got exposed before disclosure.
At lest this is what I read
Well shit. I wonder if all Linux systems are affected, the testing in the repo doesn't cover Arch for instance. For now I'd assume the answer is yes.
Yea it works on arch, I just tested on my own PC:
OS: Arch Linux x86_64
Kernel: Linux 7.0.3-arch1-2
❯ ./exp
[root@arch dirtyfrag]# ls
README.md assets exp exp.c
[root@arch dirtyfrag]# whoami
root
I updated it last week.
Edit: I just ran yay -Suy to update everything and still works.
Have you tried updating your system with a less cheerful command? Like damn -Syu
I also just verified it worked on my Arch install. But running the mitigation command and rebooting effectively blocked it, and I'm on the Arch LTS kernel. I think the disabled modules are related to IPSec, which most desktop users don't really need.
load more comments
(2 replies)
Its a kernel exploit, so probably. But I just checked my arch installs,and I don't have any of the kernel modules loaded. ~~Loading requires root anyway, so I think this may be fairly limited in reality?~~
Edit: seems the modules get loaded automatically :(
load more comments
(2 replies)
view more: next ›