JFROG has detailed a high-severity Linux kernel vulnerability, CVE-2026-43503, immediately allowing local users to gain root access. Named 'DirtyClone,' this local privilege escalation exploit is a variant of existing vulnerabilities like DirtyFrag and Fragnesia. The flaws are due to improper memory management in the kernel’s networking stack related to socket buffer processing. A patch issued on May 24 addresses this, but systems not fully updated remain vulnerable. Affected distributions include Debian, Fedora, and Ubuntu, posing significant risks to multi-tenant clouds and Kubernetes environments.
Linux Kernel Flaw 'DirtyClone' Lets Local Users Gain Root Access
CyberSIXT Evidence Panel
Article by CyberSIXT
Timeline Coverage
Swipe to explore timeline
-
Linux Kernel Flaw 'DirtyClone' Lets Local Users Gain Root Access
www.securityweek.com
-
DirtyClone Flaw in Linux Kernel Enables Silent Root Escalation
cybersixt.com
-
DirtyClone flaw lets Linux users gain root via page cache exploit
-
DirtyClone Flaw Lets Linux Users Escalate to Root Access