it’s a fight against windmills. there’s already the next exploit based on the ‘dirty frag’ bug.
imo not an bug but a systemic-design-flaw of the mechanism itself and i’m convinced that it needs more than a patch. this modules and the mechanism needs a better and safer redesign.
you’re not the only one and it gets worse if you check the announcements of other distributions. there is total confusion about what kernel is patched or not… 5 distros → 10 opinions… total turmoil
no, the only way/workaround by now is to blacklist these 3 modules as described and wait till there’s a real solution. that should work for the main-number of users. it gets problematic if you wanna use vpn-providers and server-based systems where you might need this modules.