Fragnasia flaw could grant root on many Linux kernels

May 14, 2026 at 11:09 AM

•

1 min read

Fragnasia flaw could grant root on many Linux kernels — Photo: BleepingComputer

TL;DR Summary

A high-severity Linux kernel local privilege-escalation flaw, Fragnasia (CVE-2026-46300), lets an unprivileged attacker write to the kernel page cache via the XFRM ESP-in-TCP subsystem to gain root; patches are rolling out for all affected kernels, and a PoC exists. Mitigations include removing vulnerable modules esp4, esp6, and rxrpc with modprobe.d, though this can disrupt AFS and IPsec VPNs. The bug is part of the Dirty Frag family; CISA has also flagged Copy Fail as actively exploited in the wild.

Topics:technology #kernel #linux #patching #privilege-escalation #security

Share this article

New Fragnesia Linux flaw lets attackers gain root privileges BleepingComputer
New Fragnesia Linux Kernel LPE Grants Root Access via Page Cache Corruption The Hacker News
Fragnesia: Linux Kernel Local Privilege Escalation via ESP-in-TCP wiz.io
How Cloudflare responded to the “Copy Fail” Linux vulnerability The Cloudflare Blog
Active attack: Dirty Frag Linux vulnerability expands post-compromise risk Microsoft

Reading Insights

Total Reads

Unique Readers

Time Saved

4 min

vs 4 min read

Condensed

90%

783 → 79 words

Want the full story? Read the original article

Read on BleepingComputer

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights