Linux bitten by second severe vulnerability in as many weeks
Summary
A new security flaw called Dirty Frag allows users with low access levels to take full control of Linux servers. This is the second serious Linux vulnerability found recently, and it affects many Linux versions. Some Linux distributions have started releasing fixes, but many systems remain at risk.Key Facts
- Dirty Frag lets untrusted users or virtual machine users get root access on Linux servers.
- It works well in shared environments where many users share the same server.
- The exploit code was leaked online three days ago and works reliably on almost all Linux versions.
- Microsoft has noticed hackers trying to use Dirty Frag in real attacks.
- Dirty Frag combines two Linux kernel bugs tracked as CVE-2026-43284 and CVE-2026-43500.
- Both vulnerabilities come from mistakes in how Linux handles memory caches called page caches.
- Some Linux distributions like Debian, AlmaLinux, and Fedora have started releasing patches to fix this issue.
- Dirty Frag is related to previous Linux vulnerabilities like Dirty Pipe and Copy Fail that also exploit memory cache bugs.
Read the Full Article
This is a fact-based summary from The Actual News. Click below to read the complete story directly from the original source.