Cyber Security

Fragnesia: New Linux kernel LPE bug was spawned by Dirty Frag patch (CVE-2026-46300)

Fragnesia: New Linux kernel LPE bug was spawned by Dirty Frag patch (CVE-2026-46300)

Researchers have found and disclosed yet another local privilege escalation (LPE) vulnerability in the Linux kernel: CVE-2026-46300, aka “Fragnesia”. The flaw is in the same class of vulnerabilities as the recently disclosed Dirty Frag bug(s). Like Dirty Frag, it affects the same Linux module (xfrm-ESP). In fact, according to Dirty Frag discoverer Hyunwoo Kim, Fragnesia was “accidentally activated” by the patch fixing one of the original Dirty Frag vulnerabilities (i.e., CVE-2026-43284). CVE-2026-46300 explained Fragnesia was … More

The post Fragnesia: New Linux kernel LPE bug was spawned by Dirty Frag patch (CVE-2026-46300) appeared first on Help Net Security.

Read More

Related Posts

Checkbox Assessments Aren't Fit to Measure to Risk

Checkbox Assessments Aren't Fit to Measure to Risk

HYCU aiR detects insider risk and AI activity from backups

HYCU aiR detects insider risk and AI activity from bac...

Over 70% of organizations hit by identity breaches

Over 70% of organizations hit by identity breaches

Cofense adds AI-powered campaign detection to stop phishing attacks

Cofense adds AI-powered campaign detection to stop phi...

Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation

Windows Zero-Days Expose BitLocker Bypasses And CTFMON ...

Machine identities outnumber humans 109 to 1

Machine identities outnumber humans 109 to 1