While scrolling through your feed, you are presented with a poll.
What do you do?
| Ignore it and continue scrolling. | |
| Take the poll. | |
| Take and boost the poll. | |
| Boost the poll without taking it. | |
| Take the poll and leave a comment. | |
| Leaving a comment without taking the poll. | |
| Take and quote the poll on your own timeline. | |
| Freeze, unable to move. |
Köln Alter Markt
9. Mai
13 -15 Uhr
Bitte Rehpost 🦌💌
Köln und Umgebung, denkt daran, morgen ist die Liegenddemo in Solidarität mit den Betroffenen von ME/CFS!
Kommt zuhauf! Seid solidarisch!
(Infos und Programm im Link)
(Alt: Person liegt im abgedunkelten Raum im Bett, im Hintergrund ein Rolli)
https://www.ksta.de/wir-helfen/liegenddemo-koeln-darum-liegen-menschen-auf-dem-alter-markt-1276621
Liebe Betroffene und sonstige Interessierte, es wird einen Livestream geben, ihr findet ihn hier:
https://m.youtube.com/watch?v=PWQ7L7MIk8k&ra=m
Komm mit zur #liegenddemo in #Köln! Heute 08.05.2026 um 13 Uhr am Alter Markt!
#LiegendDemo #MECFS #PostCovid #PostVac
#LongCovid #Anerkennung #Forschung
#Versorgung #Barrierefrei #chroniquefatiquesyndrome #MEAwareness
#bigpain #SmallFiber
#POTS
#MyalgischeEnzephalomyelitis #ChronischKrank
#DirtyFrag status/advisories:
AlmaLinux:
https://almalinux.org/blog/2026-05-07-dirty-frag/
Debian:
https://security-tracker.debian.org/tracker/CVE-2026-43500
https://security-tracker.debian.org/tracker/CVE-2026-43284
Gentoo:
https://bugs.gentoo.org/974307
RedHat:
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2026-43284
https://access.redhat.com/security/cve/cve-2026-43284
nothing yet on CVE-2026-43500
Rocky:
https://kb.ciq.com/article/rocky-linux/rl-dirty-frag-mitigation
SUSE / OpenSUSE:
https://www.suse.com/security/cve/CVE-2026-43500.html
https://www.suse.com/security/cve/CVE-2026-43284.html
https://www.suse.com/c/addressing-copy-fail2-aka-dirtyfrag-in-suse-virtualization/
Ubuntu:
https://ubuntu.com/security/CVE-2026-43284
https://ubuntu.com/security/CVE-2026-43500
https://ubuntu.com/blog/dirty-frag-linux-vulnerability-fixes-available
AWS:
https://aws.amazon.com/security/security-bulletins/rss/2026-027-aws/
https://explore.alas.aws.amazon.com/CVE-2026-43284.html
The AnnouncementA week after Copy Fail, researcher Hyunwoo Kim disclosed a second Linux kernel flaw in the same broad area — IPsec ESP and rxrpc — that they have named Dirty Frag. The bug lives in the in-place decryption fast paths of esp4, esp6, and rxrpc: when a socket buffer carries paged fragments that are not privately owned by the kernel (e.g. pipe pages attached via splice(2)/sendfile(2)/MSG_SPLICE_PAGES), the receive path decrypts directly over those externally-backed pages, exposing or corrupting plaintext that an unprivileged process still holds a reference to.
Spent most of yesterday and today doing a write up on #podman rootless containers in light of the #copyfail exploit.
I use containers for all sorts of things, and I run most of my infrastructure on Podman using rootless containers. For a while I had been meaning to do a write up on how you can use features in Podman to practice defense in depth for containerized workloads.
Copy Fail proved to be a great example to use when talking about containers, user namespaces, Linux capabilities, and more! I did not find much information specific to containers so I decided to dust-up the blog with my own exploration.
https://garrido.io/notes/podman-rootless-containers-copy-fail/
Dgar
allison
Vee
[object Object]
Inspirational Skeletor💀
Demos & Termine - Köln/Bonn
why-not @why-not?
Jan Schaumann
Gabriel Garrido