The Dirty Frag vulnerability is a local privilege escalation flaw in the Linux kernel, similar to the recent Copy Fail flaw, that allows immediate root access on all major distributions. No CVSS score, CVE, or patched versions are provided as the coordinated disclosure embargo was broken prematurely. The researcher has released exploit code and a script to remove the vulnerable modules as an immediate workaround.
Hyunwoo Kim has announced the Dirty Frag security flaw, a local-privilege-escalation (LPE) vulnerability similar to the recently disclosed Copy Fail flaw: Because the embargo has now been broken, no patches or CVEs exist for these vulnerabilities. After consultation with the linux-distros@vs.openwall.org maintainers, and at the maintainers' request, I am publicly releasing this Dirty Frag document. As with the previous Copy Fail vulnerability, Dirty Frag likewise allows immediate root privilege escalation on all major distributions. Kim, who discovered the flaw and had attempted a coordinated disclosure set for May 12, has released the code for an exploit, as well as a example script to remove the vulnerable modules. A full write-up , with the disclosure timeline, is also available. It's unknown at this time whether this is an example of parallel discovery or how the third party was able to disclose it prior to the end of the embargo. We will be following up as more information comes to light. to post comments Well, that's lovely Posted May 7, 2026 20:35 UTC (Thu) by dskoll (subscriber, #1630) [ Link ] Worked against kernel 7.0.4. I guess 7.0.5 will be out at some point soon.