> TritonInfoSec News
Home / May 12, 2026 / Story
0
#4 SecurityWeek general May 11, 2026 at 08:15 UTC

New ‘Dirty Frag’ Linux Vulnerability Possibly Exploited in Attacks

By Eduard Kovacs

AI Summary

A second severe Linux kernel privilege escalation vulnerability, dubbed 'Dirty Frag' and tracked as CVE-2026-43284 and CVE-2026-43500, was disclosed before a patch was released and may already be under limited active exploitation. The flaw affects the same kernel subsystem as last month's 'Copy Fail' bug and allows any local user with a basic account to gain full root control. Enterprise Linux administrators should prioritize patching immediately as production-version fixes are now becoming available.

Read full article → https://www.securityweek.com/new-dirty-frag-linux-…

Relevance score: 87.0/100

# More from May 12

  1. 1
    Hackers Used AI to Develop First Known Zero-Day 2FA Bypass for Mass Exploitation The Hacker News
  2. 2
    Google: Hackers used AI to develop zero-day exploit for web admin tool BleepingComputer
  3. 3
    Ollama Out-of-Bounds Read Vulnerability Allows Remote Process Memory Leak The Hacker News
  4. 5
    Fake OpenAI Privacy Filter Repo Hits #1 on Hugging Face, Draws 244K Downloads The Hacker News
  5. 6
    cPanel CVE-2026-41940 Under Active Exploitation to Deploy Filemanager Backdoor The Hacker News
  6. 7
    TeamPCP Compromises Checkmarx Jenkins AST Plugin Weeks After KICS Supply Chain Attack The Hacker News
  7. 8
    TrickMo Android banker adopts TON blockchain for covert comms BleepingComputer
  8. 9
    UK water company allowed hackers to lurk undetected for nearly two years, regulator finds The Record
  9. 10
    Hackers abuse Google ads, Claude.ai chats to push Mac malware BleepingComputer