{"id":242381,"date":"2026-05-07T20:08:00","date_gmt":"2026-05-08T00:08:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/05\/07\/dirty-frag-vulnerability-made-public-early-root-privilege-on-all-distributions\/"},"modified":"2026-05-09T11:25:17","modified_gmt":"2026-05-09T15:25:17","slug":"dirty-frag-vulnerability-made-public-early-root-privilege-on-all-distributions","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/05\/07\/dirty-frag-vulnerability-made-public-early-root-privilege-on-all-distributions\/","title":{"rendered":"Dirty Frag Vulnerability Made Public Early: Root Privilege On All Distributions"},"content":{"rendered":"<p><a href=\"https:\/\/www.phoronix.com\/news\/Dirty-Frag-Linux\">Dirty Frag Vulnerability Made Public Early: Root Privilege On All Distributions<\/a><\/p>\n<p><a href=\"https:\/\/www.phoronix.com\/news\/Dirty-Frag-Linux\">https:\/\/www.phoronix.com\/news\/Dirty-Frag-Linux<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-05-07 20:08:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.phoronix.com\">www.phoronix.com<\/a><\/p>\n<p>One week after the Copy Fail vulnerability, a new Linux local privilege escalation bug has been made public. This time around there are no patches or CVEs yet for this &#8220;Dirty Frag&#8221; vulnerability as the embargo was broken early and thus the security researcher went ahead and published earlier than anticipated.<\/p>\n<p>Dirty Frag allows local users to elevate to root on all major distributions. Linux distributions aren&#8217;t yet patched though there is a workaround for those interested, but for the immediate future it means root privilege escalaton on all major distributions.\n<\/p>\n<p>Dirty Frag lives within the decryption fast paths of the esp4, esp6, and rxrpc kernel code.\n<\/p>\n<p>The quick workaround to remove the modules in which the vulnerabilties occur can be done safely for most systems with:<br \/>\n<\/p>\n<p>sh -c &#8220;printf &#8216;install esp4 \/bin\/falseninstall esp6 \/bin\/falseninstall rxrpc \/bin\/falsen&#8217; > \/etc\/modprobe.d\/dirtyfrag.conf; rmmod esp4 esp6 rxrpc 2>\/dev\/null; true&#8221;<br \/>\n<br \/>More details on Dirty Frag via the oss-security posting. This GitHub repository has more details on Dirty Frag.<\/p>\n<p align=\"center\"><img decoding=\"async\" src=\"https:\/\/www.phoronix.net\/image.php?id=2026&#038;image=dirty_frag\" alt=\"Dirty Frag\"\/><\/p>\n<p>Alma Linux is among the first Linux distributions out with early patches for testing.<br \/>\n<br \/><a href=\"https:\/\/www.phoronix.com\/news\/Dirty-Frag-Linux\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Dirty Frag Vulnerability Made Public Early: Root Privilege On All Distributions https:\/\/www.phoronix.com\/news\/Dirty-Frag-Linux Publish Date: 2026-05-07&#8230;<\/p>\n","protected":false},"author":1,"featured_media":242382,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/www.phoronix.net\/image.php?id=2026&image=dirty_frag","fifu_image_alt":"","footnotes":""},"categories":[48],"tags":[71,57,27],"class_list":["post-242381","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-linux","tag-linux","tag-security","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/242381"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=242381"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/242381\/revisions"}],"predecessor-version":[{"id":242383,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/242381\/revisions\/242383"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/242382"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=242381"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=242381"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=242381"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}