Cert • 3h
Linux Kernel: 'DirtyFrag' and 'DirtyClone' Local Privilege Escalation Vulnerabilities
The Linux Kernel is affected by a cluster of critical local privilege escalation (LPE) vulnerabilities known as 'DirtyFrag,' most notably 'DirtyClone' (CVE-2026-43503, CVSS 8.8). These flaws reside within the ESP (Encapsulating Security Payload) and RXRPC subsystems. By utilizing cloned network packets, an attacker can corrupt file-backed memory to silently rewrite executable code in-memory without altering the physical disk. This mechanism allows local users to bypass disk-based integrity checks and escalate privileges to root. Immediate kernel patching is required to mitigate the risk of systemic compromise across enterprise Linux environments.
Links:Cert, feeds.feedburner.com, SC Media, Security Affairs, App, Cve, Relianoid, Extrahop, Access, Wiz, Reddit, Hackerstorm •