Articles & Reviews
News Archive
Forums
Premium
Contact
Categories

Computers Display Drivers Graphics Cards Linux Gaming Memory Motherboards Processors Software Storage Operating Systems Peripherals

Dirty Frag Vulnerability Made Public Early: Root Privilege On All Distributions

Written by Michael Larabel in Linux Security on 7 May 2026 at 08:08 PM EDT. 68 Comments

LINUX SECURITY

One week after the Copy Fail vulnerability, a new Linux local privilege escalation bug has been made public. This time around there are no patches or CVEs yet for this "Dirty Frag" vulnerability as the embargo was broken early and thus the security researcher went ahead and published earlier than anticipated.

Dirty Frag allows local users to elevate to root on all major distributions. Linux distributions aren't yet patched though there is a workaround for those interested, but for the immediate future it means root privilege escalaton on all major distributions.

Dirty Frag lives within the decryption fast paths of the esp4, esp6, and rxrpc kernel code.

The quick workaround to remove the modules in which the vulnerabilties occur can be done safely for most systems with:

sh -c "printf 'install esp4 /bin/false\ninstall esp6 /bin/false\ninstall rxrpc /bin/false\n' > /etc/modprobe.d/dirtyfrag.conf; rmmod esp4 esp6 rxrpc 2>/dev/null; true"

More details on Dirty Frag via the oss-security posting. This GitHub repository has more details on Dirty Frag.

Dirty Frag

Alma Linux is among the first Linux distributions out with early patches for testing.

68 Comments

Related News

Linux Out-Of-Bounds Access Fixed For Unprivileged Users With Specially Crafted Certs

AppArmor Enhancements Merged For Linux 7.0

Linux 7.0 Lands ML-DSA Quantum-Resistant Signature Support

CVE-2026-0915: GNU C Library Fixes A Security Issue Present Since 1996

Torvalds On Linux Security Modules: "I Already Think We Have Too Many Of Those Pointless Things"

Linux 6.19 Will Allow Enforcing IPE Security Checks On Indirectly Executed Scripts

About The Author

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week

OpenZFS 2.4.2 Released With Linux 7.0 Kernel Support, Many Bug Fixes

Wine Wayland Driver Merges Pointer Warp Support

AMD & Intel Roll Out New Linux Updates For Today's Patch Tuesday

FreeBSD 15.2 Will Aim For The Nice KDE Desktop Installation Experience

DXVK-NVAPI 0.9.2 Further Improves NVIDIA Integration For Steam Play Linux Gaming

Linux Scheduler Work Helping Boost Gaming Performance On Old "Potato" Hardware

IBM s390 Is The Latest Architecture Seeing Rust Linux Kernel Support

Fwupd 2.1.3 Brings Firmware Updating To Modular Smartphones