top of page
ALL POSTS
DirtyDecrypt: PoC Exploit Released for Linux Kernel LPE Vulnerability
Key Findings DirtyDecrypt (CVE-2026-31635, CVSS 7.5) is a Linux kernel local privilege escalation vulnerability with working proof-of-concept code now publicly available on GitHub The flaw stems from a missing copy-on-write guard in the rxgk_decrypt_skb() function, allowing attackers to write data directly to privileged process memory or sensitive files like /etc/shadow and /etc/sudoers Only distributions with CONFIG_RXGK enabled are affected, including Fedora, Arch Linux, an
May 203 min read
New Fragnesia Linux Kernel LPE Vulnerability Grants Root Access Through Page Cache Corruption
Key Findings CVE-2026-46300 (Fragnesia) is a new Linux kernel LPE vulnerability with CVSS score 7.8 that grants unprivileged attackers root access via page cache corruption The flaw exists in the XFRM ESP-in-TCP subsystem and was discovered by William Bowling of the V12 security team Unlike the related Dirty Frag vulnerability, Fragnesia requires no host-level privileges for exploitation This is the third major Linux kernel LPE discovered in two weeks, following Copy Fail and
May 143 min read
bottom of page
