{"id":241929,"date":"2026-05-08T13:05:00","date_gmt":"2026-05-08T17:05:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/05\/08\/another-major-linux-security-flaw-revealed-dirty-frag-allows-root-on-all-major-distros-with-no-patch-or-fix-available-yet\/"},"modified":"2026-05-08T16:40:13","modified_gmt":"2026-05-08T20:40:13","slug":"another-major-linux-security-flaw-revealed-dirty-frag-allows-root-on-all-major-distros-with-no-patch-or-fix-available-yet","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/05\/08\/another-major-linux-security-flaw-revealed-dirty-frag-allows-root-on-all-major-distros-with-no-patch-or-fix-available-yet\/","title":{"rendered":"Another major Linux security flaw revealed \u2014 &#8216;Dirty Frag&#8217; allows root on all major distros, with no patch or fix available yet"},"content":{"rendered":"<p><a href=\"https:\/\/www.techradar.com\/pro\/security\/another-major-linux-security-flaw-revealed-dirty-frag-allows-root-on-all-major-distros-with-no-patch-or-fix-available-yet\">Another major Linux security flaw revealed \u2014 &#8216;Dirty Frag&#8217; allows root on all major distros, with no patch or fix available yet<\/a><\/p>\n<p><a href=\"https:\/\/www.techradar.com\/pro\/security\/another-major-linux-security-flaw-revealed-dirty-frag-allows-root-on-all-major-distros-with-no-patch-or-fix-available-yet\">https:\/\/www.techradar.com\/pro\/security\/another-major-linux-security-flaw-revealed-dirty-frag-allows-root-on-all-major-distros-with-no-patch-or-fix-available-yet<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-05-08 13:05:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.techradar.com\">www.techradar.com<\/a><\/p>\n<ul id=\"elk-37371436-2def-4ae7-9aa8-8a83bddecc16\">\n<li><strong>Researcher Hyunwoo Kim discloses <\/strong><strong>Dirty Frag<\/strong><strong>, a nine\u2011year\u2011old kernel flaw enabling root privilege escalation across major Linux distros<\/strong><\/li>\n<li><strong>The exploit chains two page\u2011cache write bugs, works reliably without race conditions, and currently has no CVE or patch<\/strong><\/li>\n<li><strong>Mitigation requires disabling vulnerable kernel modules, but this breaks IPsec VPNs and AFS, leaving systems exposed until fixes arrive<\/strong><\/li>\n<\/ul>\n<p id=\"elk-89c0b648-03f6-49c6-8191-1d03c5b8b6df\">Some of the most widely used and influential Linux distributions are vulnerable to a zero-day flaw that allows threat actors to gain root privileges, and a patch has not yet been made public, experts have warned.<\/p>\n<p>Security researcher Hyunwoo Kim disclosed finding a nine-year-old flaw, and published a proof-of-concept (PoC) exploit.<\/p>\n<p id=\"elk-89c0b648-03f6-49c6-8191-1d03c5b8b6df-2\">He named the vulnerability Dirty Frag, and explained that it works by chaining two kernel flaws, the xfrm-ESP Page-Cache Write vulnerability and the RxRPC Page-Cache Write vulnerability. This allowed him to tweak protected system files in memory without having proper authorization.<\/p>\n<p><span class=\"inline-flex items-center gap-1.5 text-sm font-article-heading capitalize leading-5 text-white whitespace-nowrap\"><span class=\"jwp-carousel-title-mobile\"\/><span class=\"jwp-carousel-title-desktop\">Latest Videos From<\/span><span class=\"jwp-carousel-brand inline-flex items-center\" aria-hidden=\"true\"><\/span><\/span><img decoding=\"async\" src=\"https:\/\/www.techradar.com\/media\/img\/techradar_logo_v2.svg\" alt=\"\" class=\"max-h-12 w-auto\" aria-hidden=\"true\"\/><br \/>\n        <span class=\"\n            flex\n            after:content-[''] after:flex-1 after:ml-4 after:my-[0.7rem] after:border-t after:border-solid after:border-t-[#ccc]\n            before:content-[''] before:flex-1 before:mr-4 before:my-[0.7rem] before:border-t before:border-solid before:border-t-[#ccc]\n            font-article-heading pb-0 text-[length:var(--article-river-title--font-size,1em)] uppercase sm:text-[length:var(--article-river-title--font-size,0.875em)] font-bold\n        \"><br \/>\n            You may like<br \/>\n        <\/span><\/p>\n<h2 id=\"mitigations-available-3\">Mitigations available<\/h2>\n<p id=\"elk-5c28a411-fdb4-4a55-ac70-48e3056654bf\">Kim explained that he shared his findings with the maintainers of different Linux distros under embargo in order to give everyone time to patch up. However, that embargo was seemingly broken on May 7, when a third party published the exploit.<\/p>\n<p>&#8220;Because the embargo has currently been broken, no patch or CVE exists. After consultation with the maintainers on linux-distros@vs.openwall.org and at their request, this Dirty Frag document is being published,&#8221; Kim said.<\/p>\n<p>Besides not having a CVE, the bug is also yet to be given a severity score. However, since this is an unauthenticated privilege escalation flaw, it\u2019s safe to assume it will receive a critical-severity rating (9.0 and higher).<\/p>\n<p>So far it was confirmed that Ubuntu, Red Hat Enterprise Linux, CentOS Stream, AlmaLinux, openSUSE Tumbleweed, and Fedora, are all vulnerable, and have not yet received patches.<\/p>\n<p class=\"newsletter-form__strapline\">Sign up to the TechRadar&#8230;<\/p>\n<p><a href=\"https:\/\/www.techradar.com\/pro\/security\/another-major-linux-security-flaw-revealed-dirty-frag-allows-root-on-all-major-distros-with-no-patch-or-fix-available-yet\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Another major Linux security flaw revealed \u2014 &#8216;Dirty Frag&#8217; allows root on all major distros,&#8230;<\/p>\n","protected":false},"author":1,"featured_media":241930,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/cdn.mos.cms.futurecdn.net\/p7asKHxYWoAoJXzcD2M8e7-2000-80.jpg","fifu_image_alt":"","footnotes":""},"categories":[48],"tags":[143,144,90,31,97,89,71,98,94,57,79,27],"class_list":["post-241929","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-linux","tag-almalinux","tag-centos","tag-cve","tag-exploit","tag-fedora","tag-flaw","tag-linux","tag-opensuse","tag-red-hat-enterprise-linux","tag-security","tag-ubuntu","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/241929"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=241929"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/241929\/revisions"}],"predecessor-version":[{"id":241931,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/241929\/revisions\/241931"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/241930"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=241929"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=241929"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=241929"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}