Dirty Frag is a new Linux bug putting your PC at risk and there's no easy fix
0.3
A newly discovered Linux vulnerability called "Dirty Frag" exploits a flaw in the kernel's handling of fragmented network packets, potentially allowing attackers to crash or compromise affected systems. The bug impacts many Linux distributions, and security experts warn that there is no simple patch available, leaving systems exposed until a more complex fix is developed.
33 items·1 source·First seen ·Last activity
A newly discovered Linux vulnerability called "Dirty Frag" exploits a flaw in the kernel's handling of fragmented network packets, potentially allowing attackers to crash or compromise affected systems. The bug impacts many Linux distributions, and security experts warn that there is no simple patch available, leaving systems exposed until a more complex fix is developed.
OpenMandriva reported that its website and source code infrastructure were targeted in an attempted sabotage attack. The project stated that the attack was detected early and mitigated, with no compromise to distribution integrity or user data confirmed. The team thanked the community for vigilance and announced they are reviewing security measures.
A new root exploit for both Nintendo Switch 1 and Switch 2 has been announced, potentially allowing for deeper system access and homebrew applications on both consoles.
Open Printer provides a progress update on its open-source 3D printer project and announces its nomination for a French design award, highlighting key technical developments and community milestones achieved during the development process.
A technical deep-dive into kernel exploitation techniques that bypass VBS, HVCI, and Kernel CFG on modern Windows, showing attackers can read memory or disable defenses without needing full code execution.
··
2.0
The latest Raspberry Pi OS update, based on Linux 6.18 LTS, brings noticeable performance improvements across various workloads. Benchmarks show gains in memory throughput, compression, and overall system responsiveness compared to the previous kernel version.
··
4.0
Linus Torvalds has released Linux 7.2-rc1, noting that things look reasonably normal so far. The release candidate includes updates across various subsystems including graphics, networking, and filesystem changes. Torvalds expects a regular release cycle unless unexpected issues arise.
··
2.5
Incus 7.2 has been released, introducing new features and improvements to the container and virtual machine management tool. The update includes enhancements to instance configuration, networking, and storage handling, along with various bug fixes and performance optimizations.
··
3.0
AMD has published Linux kernel patches introducing a new "low power" CPU core type, aimed at better handling hybrid CPU architectures by distinguishing between performance and efficiency cores within the Linux scheduler.
··
3.0
Apache Grails has released versions 7.0.12 and 7.1.12, which are the latest updates to the open-source web application framework based on the Groovy language.
··
2.0
Astro 7 has been officially released, bringing new features and improvements to the web framework for building content-driven websites. The update includes enhanced performance, better developer experience, and updated tooling.
··
2.0
Bun 1.4, the next version of the JavaScript runtime, is scheduled for release on July 7th.
··
4.0
Valve has released SteamOS 3.8, a new stable version of the Linux-based operating system for the Steam Deck. The update includes various system improvements, bug fixes, and performance enhancements to improve the gaming experience on the handheld device.
··
4.0
The Linux 7.2 kernel merge window has integrated several storage subsystem updates, including improvements to IO_uring, NVMe, and device mapper. These changes aim to enhance performance and support for modern storage hardware.
··
3.0
The Linux 7.2 slab allocator updates bring additional performance optimizations, continuing efforts to improve memory management efficiency in the kernel.
··
4.0
Collabora's Kernel 7.1 release brings enhancements to graphics drivers, expanded Rust-for-Linux integration, and improved System-on-Chip (SoC) support. Key updates include better GPU performance and broader hardware compatibility across multiple platforms.
··
3.0
A Linux kernel patch set dubbed "Linus 7.2" has been merged, bringing significant performance improvements to anonymous pipe writes. The optimizations boost throughput for shell pipelines and other pipe-heavy workloads by reducing overhead in the pipe write path.
··
3.0
Linux 7.1, a new interim kernel release, removes support for Intel 486 processors and performs other legacy code cleanup, signaling the end of an era for the nearly 35-year-old CPU architecture while continuing to modernize the kernel.
··
3.0
The Debian project announced the release of Debian 13 "Trixie" version 13.5, which includes the latest security updates and bug fixes. This point release updates the stable distribution with various package improvements.
··
4.0
Benchmarks comparing Linux kernel versions 6.6 LTS through 7.1 on an AMD Threadripper system show performance improvements of up to 13% over roughly three years of kernel development, demonstrating steady gains without major regressions.
··
5.0
Linus Torvalds announced the release of Linux 7.1-rc4, noting it is a regular weekly release with fixes across various subsystems including networking, filesystems, and drivers. He commented that the release looks fairly normal without any unusual concerns.
··
4.0
Linus Torvalds has released Linux 7.1-rc4, which includes a large number of fixes across various subsystems. The release candidate is notably heavier than rc3, with changes spanning drivers, architecture updates, networking, and filesystem fixes.
··
0.0
This page provides the download for KB3132080, an update for Windows 8.1 x64-based systems, hosted on the Legacy Update download center.
··
6.0
Linux 7.0.8 has been released along with updates to several LTS kernel branches to address a security vulnerability involving SSH-keysign, which could allow local privilege escalation.
··
1.0
Openfire 5.0.5, an open-source Java XMPP/Jabber server, has been released. This version includes bug fixes and improvements to enhance stability and performance for real-time collaboration.
··
3.0
Linux 7.1's HID subsystem updates include support for newer Logitech Bluetooth keyboards and enhanced sanitization to guard against malicious input devices.
··
2.5
GNU SASL gsasl version 2.2.3 has been released, which includes a security fix. The update addresses a vulnerability in the SASL authentication library. Users are advised to upgrade to this latest version for enhanced security.
··
3.5
PHP License v4 has been updated to be compatible with the GNU General Public License (GPL), addressing previous licensing conflicts and allowing broader use of PHP-licensed code in GPL-covered software.
··
3.0
OpenZFS 2.4.2 has been released, adding compatibility with the Linux 7.0 kernel and delivering numerous bug fixes across the file system and volume manager.
··
6.0
Two stable kernel updates (5.15.186 and 6.1.131) have been released, primarily fixing the "Dirty Frag" vulnerability (CVE-2025-31198) that allowed local attackers to escalate privileges by manipulating TCP fragment handling under specific conditions.
··
6.0
Linux kernel 7.0.6 has been released, which includes a fix for the Dirty Frag vulnerability (a security flaw that could allow attackers to bypass firewall rules or crash a system). The exploit targeted the way the kernel handles fragmented IPv4 and IPv6 packets, and the patch addresses it across stable and LTS kernel branches.
··
5.0
Linux 7.0.6 has been released to complete the mitigation of the Dirty Frag vulnerability, a security flaw affecting the Linux kernel's fragmentation handling. The update provides the final patches needed to fully address the issue and protect systems from potential exploitation.
··
7.0
Linux kernel 7.0.6 has been released, primarily to complete mitigation for the Dirty Frag vulnerability. This security issue affects IPv6 fragmentation handling, and the new kernel version includes the necessary patches to fully address it.
··
4.5
A newly discovered Linux vulnerability called "Dirty Frag" exploits a flaw in the kernel's handling of fragmented network packets, potentially allowing attackers to crash or compromise affected systems. The bug impacts many Linux distributions, and security experts warn that there is no simple patch available, leaving systems exposed until a more complex fix is developed.