{"id":247671,"date":"2026-05-11T08:32:00","date_gmt":"2026-05-11T12:32:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/05\/11\/dirty-frag-linux-kernel-hit-by-second-major-security-flaw-in-two-weeks\/"},"modified":"2026-05-17T15:05:26","modified_gmt":"2026-05-17T19:05:26","slug":"dirty-frag-linux-kernel-hit-by-second-major-security-flaw-in-two-weeks","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/05\/11\/dirty-frag-linux-kernel-hit-by-second-major-security-flaw-in-two-weeks\/","title":{"rendered":"Dirty Frag: Linux kernel hit by second major security flaw in two weeks"},"content":{"rendered":"<p><a href=\"https:\/\/therecord.media\/dirty-frag-linux-kernel-hit-by-second-major-bug\">Dirty Frag: Linux kernel hit by second major security flaw in two weeks<\/a><\/p>\n<p><a href=\"https:\/\/therecord.media\/dirty-frag-linux-kernel-hit-by-second-major-bug\">https:\/\/therecord.media\/dirty-frag-linux-kernel-hit-by-second-major-bug<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-05-11 08:32:00<\/a><\/p>\n<p>Source Domain: <a href=\"therecord.media\">therecord.media<\/a><\/p>\n<p class=\"paragraph\"> A second major Linux vulnerability has been disclosed in as many weeks, this time by an independent security researcher who published a working exploit after a coordinated disclosure embargo collapsed. <\/p>\n<p class=\"paragraph\"> Nicknamed \u201cDirty Frag,\u201d the issue was found in the same area of the Linux kernel that produced last month\u2019s Copy Fail bug, and also allows anyone with a basic account on an affected computer to seize full administrative control. <\/p>\n<p class=\"paragraph\"> Copy Fail had prompted concern as it provided hackers with an escape route from cloud containers, meaning a compromised application running inside a supposedly isolated environment can break out and take control of the entire host server \u2014 a major risk given the cloud industry\u2019s dependence on Linux distributions. <\/p>\n<p class=\"paragraph\"> Dirty Frag also allows for container escape, and similarly affects nearly all Linux distributions in use today. It was discovered by Hyunwoo Kim, and exploits the same underlying design flaw in how Linux manages files in memory. <\/p>\n<p class=\"paragraph\"> Theori, the firm that discovered Copy Fail with the assistance of its own AI tooling, separately noted at the time that its own scanning had surfaced additional vulnerabilities in the same area of the kernel, although these remained under private disclosure. <\/p>\n<p class=\"paragraph\"> Kim reported the flaw he discovered privately to Linux maintainers on April 30, giving them time to prepare patches as per the standard coordinated disclosure process. <\/p>\n<p class=\"paragraph\"> But, on May 7, Kim said \u201can unrelated third party independently published the exploit,\u201d prompting him to release his full writeup and his own working exploit on the same day. It is not known who the third party is. <\/p>\n<p class=\"paragraph\"> \u201cBecause the embargo has currently been broken, no patch or CVE exists,\u201d Kim wrote on the oss-security mailing list, adding that after consulting Linux maintainers, and at their request, he had decided to publish his writeup. <\/p>\n<p class=\"paragraph\"> The Dirty Frag flaw is being tracked as two linked vulnerabilities \u2014 CVE-2026-43284 and CVE-2026-43500 \u2014 each affecting a&#8230;<\/p>\n<p><a href=\"https:\/\/therecord.media\/dirty-frag-linux-kernel-hit-by-second-major-bug\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Dirty Frag: Linux kernel hit by second major security flaw in two weeks https:\/\/therecord.media\/dirty-frag-linux-kernel-hit-by-second-major-bug Publish&#8230;<\/p>\n","protected":false},"author":1,"featured_media":247672,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/cms.therecord.media\/uploads\/digital_computer_01bd73eb3f.jpg","fifu_image_alt":"","footnotes":""},"categories":[48],"tags":[90,31,89,71,57,27],"class_list":["post-247671","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-linux","tag-cve","tag-exploit","tag-flaw","tag-linux","tag-security","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/247671"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=247671"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/247671\/revisions"}],"predecessor-version":[{"id":247673,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/247671\/revisions\/247673"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/247672"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=247671"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=247671"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=247671"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}