Lucene search
K

7 matches found

RedHat Linux
RedHat Linux
added 2026/06/30 11:30 a.m.4 views

kernel: "Dirty Frag" ESP XFRM variant is a new universal Local Privilege Escalation (LPE) vulnerability in the Linux kernel

A flaw was found in the Linux kernel's xfrm-ESP and RxRPC subsystems. Unsafe in-place cryptographic processing of shared socket buffer fragments allows a low-privileged local attacker to corrupt page-cache contents of readable files, including sensitive system files, and gain root privileges. The...

8.8CVSS7.1AI score0.93235EPSS
Exploits31References6
Positive Technologies
Positive Technologies
added 2026/06/01 2:48 p.m.39 views

PT-2026-08: Local Privilege Escalation Vulnerabilities in the Linux Kernel (Dirty Frag)

This security advisory provides information regarding Linux kernel vulnerabilities: CVE-2026-43284 and CVE-2026-43500 , informally known as Dirty Frag. These vulnerabilities allow for local privilege escalation to the superuser root level and affect the Linux kernel modules: esp4 , esp6 and rxrpc...

8.8CVSS5.9AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/05/20 11:30 a.m.13 views

kernel: "Dirty Frag" ESP XFRM variant is a new universal Local Privilege Escalation (LPE) vulnerability in the Linux kernel

A flaw was found in the Linux kernel's xfrm-ESP and RxRPC subsystems. Unsafe in-place cryptographic processing of shared socket buffer fragments allows a low-privileged local attacker to corrupt page-cache contents of readable files, including sensitive system files, and gain root privileges. The...

8.8CVSS6.2AI score0.93235EPSS
Exploits31References6
RedHat Linux
RedHat Linux
added 2026/05/18 8:47 a.m.43 views

kernel: "Dirty Frag" ESP XFRM variant is a new universal Local Privilege Escalation (LPE) vulnerability in the Linux kernel

A flaw was found in the Linux kernel's xfrm-ESP and RxRPC subsystems. Unsafe in-place cryptographic processing of shared socket buffer fragments allows a low-privileged local attacker to corrupt page-cache contents of readable files, including sensitive system files, and gain root privileges. The...

8.8CVSS6.1AI score0.93235EPSS
Exploits31References6
BDU FSTEC
BDU FSTEC
added 2026/05/12 12:0 a.m.2 views

The vulnerability of the RxRPC module in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the RxRPC module in the Linux operating system’s kernel arises due to improper handling of fragmented packages and mechanisms for copying data into socket buffers. Exploiting this vulnerability allows an attacker to cause service failures...

7.8CVSS7.3AI score0.92766EPSS
Exploits20References17Affected Software8
GithubExploit
GithubExploit
added 2026/05/08 6:35 a.m.104 views

dirtyfrag-check

dirtyfrag-check A safe, read-only Python script to detect whe...

5.9AI score
Exploits0
Positive Technologies
Positive Technologies
added 2024/12/04 12:0 a.m.8 views

PT-2025-9934

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A issue in the Linux kernel has been resolved, related to the handling of received connection aborts in the rxrpc module. The problem occurs when a connection abort is received but not...

5.5CVSS6.8AI score0.00182EPSS
Exploits0
Rows per page
Query Builder