- A new Linux kernel vulnerability dubbed “Fragnesia” (CVE-2026-46300) allows unprivileged local attackers to gain root access.
- The bug is in the XFRM ESP-in-TCP subsystem and provides a deterministic page-cache corruption primitive, similar to recent Dirty Frag and Copy Fail exploits.
- A proof-of-concept exploit has been released, and patches/mitigations are available, though no in-the-wild exploitation has been observed yet.
A third critical Linux kernel vulnerability has surfaced, allowing attackers to gain root access on systems, as detailed by researcher William Bowling in May 2026. The flaw, codenamed Fragnesia and tracked as CVE-2026-46300, exploits the kernel’s XFRM ESP-in-TCP subsystem, providing a deterministic corruption primitive without requiring a race condition. Consequently, this marks another significant escalation risk for Linux distributions within a volatile two-week period.
According to security advisories and reports from Google-owned Wiz, the vulnerability lets local attackers modify read-only file contents in the kernel page cache to achieve privilege escalation. Fragnesia is similar to the recently disclosed Copy Fail and Dirty Frag bugs, immediately yielding root on major distributions by corrupting the page cache memory of the /usr/bin/su binary. Meanwhile, a threat actor named “berz0k” has been observed advertising a zero-day Linux LPE exploit for $170,000 on cybercrime forums.
Red Hat stated it is performing an assessment to confirm if existing mitigations extend to this new flaw, while CloudLinux maintainers noted customers with the Dirty Frag mitigation need no further action until patched kernels are released. However, Microsoft urged users to apply patches promptly and consider the same mitigations used for Dirty Frag if patching isn’t immediately possible. These mitigations include disabling esp4, esp6, and related xfrm/IPsec functionality, as well as restricting unnecessary local shell access.
✅ Follow BITNEWSBOT on Telegram, Facebook, LinkedIn, X.com, and Google News for instant updates.
Previous Articles:
- BRICS Shun US Dollar for $214B Yuan Trade Amid Sanctions
- Moody’s: Digital Shift Will Start Slow, Then Go Fast
- Coinbase CEO Backs Revised Crypto Clarity Act Ahead of Senate Markup
- Bitcoin Rejected at Key $82,430 Level, Echoes 2022 Pattern
- China’s proposed AI rules threaten Nvidia’s multi-billion Chinese revenue এই report says. This comes after CEO Jensen Huang joined Trump’s recent China visit.
