Dirty Frag Zero-Day Gives Root Access on Major Linux Distributions
A new Linux zero-day vulnerability called "Dirty Frag" allows local attackers to gain root privileges on all major distributions with high reliability. The exploit, developed by researcher Hyunwoo Kim, chains two kernel flaws in the xfrm-ESP and RxRPC components and does not rely on race conditions. It affects unpatched systems on Ubuntu, RHEL, CentOS Stream, Fedora, openSUSE, and others. Mitigation involves disabling the vulnerable esp4, esp6, and rxrpc kernel modules, though this breaks IPsec VPNs and certain network file systems.