Linux security concerns deepen after ‘Dirty Frag’ discovery
Linux security concerns deepen after ‘Dirty Frag’ discovery
Publish Date: 2026-05-12 05:14:00
Source Domain: www.computing.co.uk
Developers consider emergency ‘killswitch’
A second serious flaw affecting the Linux kernel has been disclosed within weeks, prompting calls for emergency defensive measures from kernel developers.
The newly revealed vulnerability, nicknamed “Dirty Frag,” allows attackers with low-level access to an affected system to gain full administrative control, according to security researchers and Linux distribution maintainers.
The flaw was discovered by independent researcher Hyunwoo Kim, who said it affects the same area of the Linux kernel implicated in last month’s widely publicised “Copy Fail” vulnerability.
Like its predecessor, Dirty Frag can be used to escape from cloud containers – isolated environments commonly used by technology firms to run applications securely on shared servers.
Such attacks are considered especially dangerous because they can allow hackers to move from a single compromised application to the wider host system.
Security experts say the bug affects most major Linux distributions currently in use.
Kim privately reported the issue to Linux maintainers on 30th April under the industry’s standard coordinated disclosure process, which typically gives developers time to prepare fixes before details are made public.
However, the disclosure process broke down after an unknown third party independently published exploit code on 7th May.
“Because the embargo has currently been broken, no patch or CVE exists,” Kim wrote in a public post to the oss-security mailing list, explaining why he had decided to release his own technical analysis and proof-of-concept exploit after consulting maintainers.
The vulnerability is now being tracked as two linked flaws, CVE-2026-43284 and CVE-2026-43500, each affecting different parts of the kernel’s networking subsystem.
…
Source
