{"id":241974,"date":"2026-05-08T12:29:00","date_gmt":"2026-05-08T16:29:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/05\/08\/warning-dirty-frag-a-new-linux-local-privilege-escalation-vulnerability-was-disclosed-patch-immediately\/"},"modified":"2026-05-08T12:29:00","modified_gmt":"2026-05-08T16:29:00","slug":"warning-dirty-frag-a-new-linux-local-privilege-escalation-vulnerability-was-disclosed-patch-immediately","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/05\/08\/warning-dirty-frag-a-new-linux-local-privilege-escalation-vulnerability-was-disclosed-patch-immediately\/","title":{"rendered":"Warning: Dirty Frag, a new Linux Local Privilege Escalation vulnerability, was disclosed. Patch Immediately!"},"content":{"rendered":"<p><a href=\"https:\/\/ccb.belgium.be\/advisories\/warning-dirty-frag-new-linux-local-privilege-escalation-vulnerability-was-disclosed\">Warning: Dirty Frag, a new Linux Local Privilege Escalation vulnerability, was disclosed. Patch Immediately!<\/a><\/p>\n<p><a href=\"https:\/\/ccb.belgium.be\/advisories\/warning-dirty-frag-new-linux-local-privilege-escalation-vulnerability-was-disclosed\">https:\/\/ccb.belgium.be\/advisories\/warning-dirty-frag-new-linux-local-privilege-escalation-vulnerability-was-disclosed<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-05-08 12:29:00<\/a><\/p>\n<p>Source Domain: <a href=\"ccb.belgium.be\">ccb.belgium.be<\/a><\/p>\n<ul>\n<li><strong>Last update<\/strong>: \u00a008\/05\/2026<\/li>\n<li><strong>Affected software<\/strong>: Linux kernel<\/li>\n<li><strong>Type<\/strong>: Local Privilege Escalation (LPE)<\/li>\n<li><strong>CVE\/CVSS<\/strong>:<br \/>\u2192 CVE-2026-43284: CVSS 7.8 (CVSS:3.0\/AV:L\/AC:L\/PR:L\/UI:N\/S:U\/C:H\/I:H\/A:H)<br \/>\u2192 CVE-2026-43500: CVSS 7.8 (CVSS:3.0\/AV:L\/AC:L\/PR:L\/UI:N\/S:U\/C:H\/I:H\/A:H)<\/li>\n<\/ul>\n<p>\u00a0<\/p>\n<h2>Sources<\/h2>\n<h2>Risks<\/h2>\n<p>The Linux kernel is the core component of the Linux operating system, responsible for managing the computer\u2019s hardware and providing essential services to software applications. The \u201cDirty Frag\u201d vulnerability allows a local unprivileged user to gain root privileges by chaining together two new vulnerabilities in the Linux kernel. This issue affects most major Linux distributions. Successful exploitation has a high impact on the confidentiality, integrity and availability of the involved system.<\/p>\n<h2>Description<\/h2>\n<p>\u201cDirty Frag\u201d is a recently disclosed Linux kernel local privilege escalation (LPE) vulnerability that allows an unprivileged local user to obtain root access on many major Linux distributions. This includes a user logged in remotely via SSH. It belongs to the same class of page-cache corruption issues as Dirty Pipe and the more recent \u201cCopy Fail\u201d vulnerability. The vulnerability works by chaining two separate kernel flaws in the networking subsystem. Together, these flaws allow attackers to overwrite protected file contents in the Linux page cache without proper write permissions, ultimately enabling deterministic root privilege escalation.<\/p>\n<p>The issue has been fixed in the Linux kernel, but an official kernel release containing the patch has not yet been published. Most Linux distributions however have backported these patches to their kernels and started to make them available through updates.<\/p>\n<p>No in-the-wild exploitation has been reported to date. However, the similar \u201cCopy Fail\u201d vulnerability was exploited shortly after its public disclosure.<\/p>\n<h2>Recommended Actions<\/h2>\n<p>\u00a0<br \/><strong>Patch<\/strong>\u00a0\u00a0<br \/>The Centre for Cybersecurity Belgium strongly recommends installing updates for vulnerable&#8230;<\/p>\n<p><a href=\"https:\/\/ccb.belgium.be\/advisories\/warning-dirty-frag-new-linux-local-privilege-escalation-vulnerability-was-disclosed\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Warning: Dirty Frag, a new Linux Local Privilege Escalation vulnerability, was disclosed. Patch Immediately! https:\/\/ccb.belgium.be\/advisories\/warning-dirty-frag-new-linux-local-privilege-escalation-vulnerability-was-disclosed&#8230;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"","fifu_image_alt":"","footnotes":""},"categories":[48],"tags":[90,71,27],"class_list":["post-241974","post","type-post","status-publish","format-standard","hentry","category-linux","tag-cve","tag-linux","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/241974"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=241974"}],"version-history":[{"count":0,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/241974\/revisions"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=241974"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=241974"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=241974"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}