THE DirtyClone vulnerability, identified as CVE-2026-43503, is a Linux kernel privilege escalation flaw with a CVSS score of 8.8. Discovered by JFrog Security Research, it allows unprivileged users to gain root access without leaving traces. This issue affects many Linux distributions, especially in shared environments like cloud and container settings. The exploit works by manipulating page-cache memory through packet cloning, ultimately allowing attackers to overwrite binaries with malicious code.
The vulnerability has been patched in several recent kernel updates, and users are strongly advised to update their systems promptly. Until then, potential mitigations include disabling unprivileged user namespaces and blacklisting unused IPsec modules.