{"id":244028,"date":"2026-05-11T10:30:00","date_gmt":"2026-05-11T14:30:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/05\/11\/rushed-patches-follow-broken-embargo-on-linux-kernel-vulnerabilities-2\/"},"modified":"2026-05-11T19:45:12","modified_gmt":"2026-05-11T23:45:12","slug":"rushed-patches-follow-broken-embargo-on-linux-kernel-vulnerabilities-2","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/05\/11\/rushed-patches-follow-broken-embargo-on-linux-kernel-vulnerabilities-2\/","title":{"rendered":"Rushed Patches Follow Broken Embargo on Linux Kernel Vulnerabilities"},"content":{"rendered":"<p><a href=\"https:\/\/www.infosecurity-magazine.com\/news\/dirty-frag-linux-kernel\/\">Rushed Patches Follow Broken Embargo on Linux Kernel Vulnerabilities<\/a><\/p>\n<p><a href=\"https:\/\/www.infosecurity-magazine.com\/news\/dirty-frag-linux-kernel\/\">https:\/\/www.infosecurity-magazine.com\/news\/dirty-frag-linux-kernel\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-05-11 10:30:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.infosecurity-magazine.com\">www.infosecurity-magazine.com<\/a><\/p>\n<p>Major Linux distributions are rushing to fix two new vulnerabilities after the disclosure embargo was broken.<\/p>\n<p>The vulnerability, comprised of two chained issues in subsystems of the Linux kernel and known as \u2018Dirty Frag,\u2019 was detected in late April 2026 by independent security researcher Hyunwoo Kim.<\/p>\n<p>He found a local privilege escalation (LPE) flaw in the Linux kernel that could allow an attacker with local access to a vulnerable device to obtain root privileges on all major Linux distributions.<\/p>\n<p>This vulnerability has a similar impact to \u2018Copy Fail,\u2019 a nine-year-old flaw in the Linux kernel tracked as CVE-2026-31431. Copy Fair was discovered in April by Taeyang Lee, a vulnerability researcher at offensive security firm Theori.<\/p>\n<p>Lee\u2019s work inspired Kim to look for similar vulnerabilities in the Linux kernel.<\/p>\n<p>Kim said he contacted the Linux kernel security team on April 30. However, on May 8 he notified users of the Openwall Project\u2019s open source security email thread that the embargo on the new vulnerability disclosure had been broken before patches were ready.<\/p>\n<p>\u201cAfter consultation with the [Linux distributions] maintainers, and at the maintainers&#8217; request, I am publicly releasing this Dirty Frag document,\u201d Kim wrote.<\/p>\n<p>Quickly, Kim and other members of the vulnerability research community worked to develop ways to fix the Dirty Frag vulnerability.<\/p>\n<p>Meanwhile, the Linux kernel security team disclosed two separate high-severity page-cache vulnerabilities on May 8 which, chained together, make Dirty Frag.<\/p>\n<p>The first, tracked as CVE-2026-43284, is a write-what-where condition vulnerability in the xfrm-ESP (IPsec) subsystem of the Linux kernel that has been exploitable since 2017. When exploited, it grants an attacker the ability to write an arbitrary value to an arbitrary location. CVE-2026-43284 has a severity rating (CVSS) of 8.8<\/p>\n<p>The second one, tracked as CVE-2026-43500, is an out-of-bounds write in the RxRPC subsystem of the Linux kernel that&#8230;<\/p>\n<p><a href=\"https:\/\/www.infosecurity-magazine.com\/news\/dirty-frag-linux-kernel\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Rushed Patches Follow Broken Embargo on Linux Kernel Vulnerabilities https:\/\/www.infosecurity-magazine.com\/news\/dirty-frag-linux-kernel\/ Publish Date: 2026-05-11 10:30:00 Source&#8230;<\/p>\n","protected":false},"author":1,"featured_media":244029,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/assets.infosecurity-magazine.com\/webpage\/og\/0e1f0bbc-bca8-4f51-9109-0099264ae67a.jpg","fifu_image_alt":"","footnotes":""},"categories":[48],"tags":[90,89,71,57,27],"class_list":["post-244028","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-linux","tag-cve","tag-flaw","tag-linux","tag-security","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/244028"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=244028"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/244028\/revisions"}],"predecessor-version":[{"id":244032,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/244028\/revisions\/244032"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/244029"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=244028"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=244028"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=244028"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}