{
  "is": "issue",
  "title": "Dirty Frag (CVE-2026-43284, CVE-2026-43500)",
  "body": "\u003cp\u003eSimilar to the recent \u003ca href=\"https://status.sr2.uk/issues/2026-04-29-copy-fail/\"\u003ecopy.fail incident\u003c/a\u003e, another local\nprivilege escalation vulnerability had been\n\u003ca href=\"https://www.openwall.com/lists/oss-security/2026/05/07/8\"\u003ediscovered in the Linux Kernel\u003c/a\u003e.\nWe learned of this via our threat intelligence feeds on the 8th of May.\u003c/p\u003e\n\u003cp\u003eNone of our systems had the affected kernel modules loaded and so exploitation was not possible.\nTo verify this we use Ansible:\u003c/p\u003e\n\u003cdiv class=\"highlight\"\u003e\u003cpre style=\"color:#f8f8f2;background-color:#272822;-moz-tab-size:4;-o-tab-size:4;tab-size:4\"\u003e\u003ccode class=\"language-yaml\" data-lang=\"yaml\"\u003e    - \u003cspan style=\"color:#f92672\"\u003ename\u003c/span\u003e: \u003cspan style=\"color:#ae81ff\"\u003eVerify CVE-2026-43284 and CVE-2026-43500 mitigation\u003c/span\u003e\n      \u003cspan style=\"color:#f92672\"\u003eansible.builtin.command\u003c/span\u003e: \u003cspan style=\"color:#e6db74\"\u003e\u0026#34;lsmod | grep -E \u0026#39;^{{ item }}\\\\s\u0026#39;\u0026#34;\u003c/span\u003e\n      \u003cspan style=\"color:#f92672\"\u003eloop\u003c/span\u003e:\n        - \u003cspan style=\"color:#ae81ff\"\u003eesp4\u003c/span\u003e\n        - \u003cspan style=\"color:#ae81ff\"\u003eesp6\u003c/span\u003e\n        - \u003cspan style=\"color:#ae81ff\"\u003erxrpc\u003c/span\u003e\n      \u003cspan style=\"color:#f92672\"\u003eregister\u003c/span\u003e: \u003cspan style=\"color:#ae81ff\"\u003emodule_check\u003c/span\u003e\n      \u003cspan style=\"color:#f92672\"\u003efailed_when\u003c/span\u003e: \u003cspan style=\"color:#ae81ff\"\u003emodule_check.rc != 1\u003c/span\u003e\n      \u003cspan style=\"color:#f92672\"\u003echanged_when\u003c/span\u003e: \u003cspan style=\"color:#66d9ef\"\u003efalse\u003c/span\u003e\n      \u003cspan style=\"color:#f92672\"\u003echeck_mode\u003c/span\u003e: \u003cspan style=\"color:#66d9ef\"\u003efalse\u003c/span\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/div\u003e\u003cp\u003eOur server systems are patched weekly and so we expect the affected modules to be updated in due course.\u003c/p\u003e\n\u003cp\u003eAs always, if you have any concerns please \u003ca href=\"https://www.sr2.uk/support\"\u003econtact our helpdesk\u003c/a\u003e.\u003c/p\u003e\n",
  "createdAt": "2026-05-08 09:00:00 +0000 UTC",
  "lastMod": "2026-05-14 11:53:16 +0100 +0100",
  "permalink": "https://status.sr2.uk/issues/2026-05-08-dirty-frag/",
  "severity": "notice",
  "resolved": false,
  "informational": true,
  "resolvedAt": "<no value>",
  "affected": [],
  "filename": "2026-05-08-dirty-frag.md"
}