Remediating Copy Fail Vulnerability

Kudos go the user gapreg, who posted on Reddit how to remediate it by disabling the module and stopping it from loading dynamically.

A workaround to patch your systems while an official kernel update coming from your distro becomes available (afaik Debian already has one).

• Check if module exists: modinfo algif_aead
• Check if it’s currently loaded: lsmod | grep algif
• Check if it can be dynamically loaded: cat /proc/sys/kernel/modules_disabled
• Stop from loading it dynamically: echo "install algif_aead /bin/false" > /etc/modprobe.d/disable-algif-aead.conf
• Remove from memory if loaded: rmmod algif_aead 2>/dev/null
• Don’t forget to reboot!