A critical Local Privilege Escalation (LPE) vulnerability dubbed "Dirty Frag" (CVE-2026-43284, CVSS 8.8 High) in the Linux kernel's ESP XFRM subsystem allows an attacker to gain root privileges. Affected versions include Linux kernel 4.11 through 5.10.254, 5.12 through 5.15.204, 5.16 through 6.1.170, 6.2 through 6.6.137, and 6.7 through 6.12.86. The vulnerability is fixed in kernel versions 5.10.255, 5.15.205, 6.1.171, 6.6.138, 6.12.87, 6.18.28, and 7.0.5, with Red Hat providing patched packages for RHEL 8.4 EUS/AUS that require a system reboot.
Red Hat Product Errata RHSA-2026:16201 - Security Advisory Issued: 2026-05-12 Updated: 2026-05-12 RHSA-2026:16201 - Security Advisory Overview Updated Packages Synopsis Important: kernel security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): kernel: "Dirty Frag" is a new universal Local Privilege Escalation (LPE) vulnerability in the Linux kernel (CVE-2026-43284) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.4 x86_64 Red Hat Enterprise Linux Server - AUS 8.4 x86_64 Fixes BZ - 2467771 - CVE-2026-43284 kernel: "Dirty Frag" ESP XFRM variant is a new universal Local Privilege Escalation (LPE) vulnerability in the Linux kernel CVEs CVE-2026-43284 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.4 SRPM kernel-4.18.0-305.191.1.el8_4.src.rpm SHA-256: 8c48a834ea4c9552053ee97c976cb9ce7f5d26b05bd5eac11fe73faa0864754f x86_64 bpftool-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 4cadaca9b452cbeac591e0a06f676935289e00355e16d7703f482dfca50c0267 bpftool-debuginfo-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 7dccb8cc46209b7256d313e00f1a6c70bca0cc7bca273c0240a64cc6b20cb716 kernel-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 7083a3a8924615994651c20dc28f0ff255e59b7d0e60a487639fe0e42ae8d60a kernel-abi-stablelists-4.18.0-305.191.1.el8_4.noarch.rpm SHA-256: 1c561ddb44ccd4f43302cd69e347e9dcc1cfec79b9384f540cec55da35efd35b kernel-core-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 214c338c29305f98522d4a46c65a4fd8ee5e64646a2c4c56ccc80dbc14160220 kernel-cross-headers-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 819d5a6e5f7fd1493135798f088bd90d68f381374721bcb8585458207ca0e1f2 kernel-debug-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 5821b25492953947901ef402353dbd89c4b8c60adf9164fc007807440aaa044b kernel-debug-core-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 5cf5546714e66e5fc94883b4d3383005f404a6629daef9bb3aef979e19827b25 kernel-debug-debuginfo-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 6906a652e626c557d342fcf2bebde45d194750b5931663ed68978ff0c0e09c7b kernel-debug-devel-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 5433e30adf8d1ea802220311073ab25d52e94d49f5d4a42ed04578a8314e05dd kernel-debug-modules-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: a396a03ef15e522f4eb44e4742306e88b51e9b9490579a3c118f8eefd6853ee5 kernel-debug-modules-extra-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: e50194fa9fbfa01f7f51cde5d440b026e4a757cc472c5ec49a0ceac6ce6622eb kernel-debuginfo-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: e812f69d7da406dd8ff99a583835255617f742a3fa7ef53cc78cfe5c922501b9 kernel-debuginfo-common-x86_64-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 31e1a1fa1042ce46ee053b816870c664bc3f587654ada5b9b9cd5808b1de9b2a kernel-devel-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 98111a240e2e2be60ec4c437091a08fdbb931d32cf2e09ca102655cbde735c29 kernel-doc-4.18.0-305.191.1.el8_4.noarch.rpm SHA-256: 7d7fa503446484d44421d8a78345b49252eb501603ad921f18d772c8d3f8d230 kernel-headers-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: c1b70a5fbd4cad465fcb79dc6bd784db4c16014f4f3ef6dd4bb2aaf279062b11 kernel-modules-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 977571f1ca74087ad304ecf988524727049210b96480450924f75cfddb1a958a kernel-modules-extra-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 610c55684967a2804352235b6793de19abc29419f407b26b11e5ba8a26f31898 kernel-tools-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 65f755d05e20ca4f779d1f9b7dde97990c198c1b4af0a41d742b045adf8d7bbd kernel-tools-debuginfo-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: fb5122ad0f91be0ef58c30cdc55c3bb4097c11175b48389460a2188d538b9c49 kernel-tools-libs-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: a8a09be2f36633816fb4574c89857e1ba0d2437b684535371ff6c451e64683de perf-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 513115bfb3becf665427a252de6e3bc4195664c4887f5a29ccf2be430bea70a9 perf-debuginfo-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 699a884b953c6a673b75cc8be3e7fd0c149d191bc77b82b7def4665ffbd7590c python3-perf-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: cf2475a734e0e12a342ffbf960f7bdfd8ebc54c3adb63f13aa66a00c9a2c4685 python3-perf-debuginfo-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: d3345574f8a394113caaeb292d72d4bbf7652db8adaf0209284a11fcf6603763 Red Hat Enterprise Linux Server - AUS 8.4 SRPM kernel-4.18.0-305.191.1.el8_4.src.rpm SHA-256: 8c48a834ea4c9552053ee97c976cb9ce7f5d26b05bd5eac11fe73faa0864754f x86_64 bpftool-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 4cadaca9b452cbeac591e0a06f676935289e00355e16d7703f482dfca50c0267 bpftool-debuginfo-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 7dccb8cc46209b7256d313e00f1a6c70bca0cc7bca273c0240a64cc6b20cb716 kernel-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 7083a3a8924615994651c20dc28f0ff255e59b7d0e60a487639fe0e42ae8d60a kernel-abi-stablelists-4.18.0-305.191.1.el8_4.noarch.rpm SHA-256: 1c561ddb44ccd4f43302cd69e347e9dcc1cfec79b9384f540cec55da35efd35b kernel-core-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 214c338c29305f98522d4a46c65a4fd8ee5e64646a2c4c56ccc80dbc14160220 kernel-cross-headers-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 819d5a6e5f7fd1493135798f088bd90d68f381374721bcb8585458207ca0e1f2 kernel-debug-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 5821b25492953947901ef402353dbd89c4b8c60adf9164fc007807440aaa044b kernel-debug-core-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 5cf5546714e66e5fc94883b4d3383005f404a6629daef9bb3aef979e19827b25 kernel-debug-debuginfo-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 6906a652e626c557d342fcf2bebde45d194750b5931663ed68978ff0c0e09c7b kernel-debug-devel-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 5433e30adf8d1ea802220311073ab25d52e94d49f5d4a42ed04578a8314e05dd kernel-debug-modules-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: a396a03ef15e522f4eb44e4742306e88b51e9b9490579a3c118f8eefd6853ee5 kernel-debug-modules-extra-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: e50194fa9fbfa01f7f51cde5d440b026e4a757cc472c5ec49a0ceac6ce6622eb kernel-debuginfo-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: e812f69d7da406dd8ff99a583835255617f742a3fa7ef53cc78cfe5c922501b9 kernel-debuginfo-common-x86_64-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 31e1a1fa1042ce46ee053b816870c664bc3f587654ada5b9b9cd5808b1de9b2a kernel-devel-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 98111a240e2e2be60ec4c437091a08fdbb931d32cf2e09ca102655cbde735c29 kernel-doc-4.18.0-305.191.1.el8_4.noarch.rpm SHA-256: 7d7fa503446484d44421d8a78345b49252eb501603ad921f18d772c8d3f8d230 kernel-headers-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: c1b70a5fbd4cad465fcb79dc6bd784db4c16014f4f3ef6dd4bb2aaf279062b11 kernel-modules-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 977571f1ca74087ad304ecf988524727049210b96480450924f75cfddb1a958a kernel-modules-extra-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 610c55684967a2804352235b6793de19abc29419f407b26b11e5ba8a26f31898 kernel-tools-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 65f755d05e20ca4f779d1f9b7dde97990c198c1b4af0a41d742b045adf8d7bbd kernel-tools-debuginfo-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: fb5122ad0f91be0ef58c30cdc55c3bb4097c11175b48389460a2188d538b9c49 kernel-tools-libs-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: a8a09be2f36633816fb4574c89857e1ba0d2437b684535371ff6c451e64683de perf-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 513115bfb3becf665427a252de6e3bc4195664c4887f5a29ccf2be430bea70a9 perf-debuginfo-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: 699a884b953c6a673b75cc8be3e7fd0c149d191bc77b82b7def4665ffbd7590c python3-perf-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: cf2475a734e0e12a342ffbf960f7bdfd8ebc54c3adb63f13aa66a00c9a2c4685 python3-perf-debuginfo-4.18.0-305.191.1.el8_4.x86_64.rpm SHA-256: d3345574f8a394113caaeb292d72d4bbf7652db8adaf0209284a11fcf6603763 The Red Hat security contact is secalert@redhat.com . More contact details at https://access.redhat.com/security/team/contact/ .