The Hacker News ·EN News source
⚡ Weekly Recap: Linux Kernel Flaws, AI Malware Tricks, Turla Backdoor, Infostealers and More
CVE Tools coverage
Researchers disclosed DirtyClone (CVE-2026-43503), a new variant of the Dirty Frag Linux kernel issue that can let local users achieve root by abusing cloned packets. JFrog notes the risk is especially high on multi-tenant cloud setups, Kubernetes clusters, and containers when user namespaces are enabled and attackers can obtain CAP_NET_ADMIN. The wider roundup also highlights active exploitation of CVE-2026-12569 in PTC Windchill PDMlink and PTC FlexPLM, underscoring how missed patches and old access paths continue to drive real-world compromise.