Cert • 2h
Linux Kernel: DirtyFrag and DirtyClone Local Privilege Escalation Vulnerabilities
The Linux kernel is affected by a series of critical local privilege escalation (LPE) vulnerabilities known as the DirtyFrag family, specifically DirtyClone (CVE-2026-43503) and CVE-2026-53130. DirtyClone leverages cloned network packets to corrupt file-backed memory, enabling attackers to rewrite executable code in memory to achieve root privileges without leaving traces on the physical disk. DirtyFrag involves memory corruption within the rxrpc (Remote XDR RPC) and ESP (Encapsulating Security Payload) subsystems. These vulnerabilities allow unprivileged local users to bypass kernel security boundaries for full system compromise. Remediation requires immediate application of patches provided by Linux kernel maintainers.
Links:Cert, feeds.feedburner.com, SC Media, Security Affairs, App, Cve, Relianoid, Extrahop, Access, Wiz, Reddit, Hackerstorm •