Хакер (xakep.ru) ·RU-RU Restricted
Linux-уязвимость DirtyClone помогает повысить права до уровня root
CVE Tools coverage
Researchers at JFrog disclosed the DirtyClone local privilege escalation vulnerability in the Linux kernel, tracked as CVE-2026-43503 (CVSS 8.8), and published a PoC. The flaw lets an attacker use zero-copy networking to modify pages in the host’s page cache—enabling tampering with instructions in a privileged binary (e.g., /usr/bin/su) and ultimately obtaining root access without changing the on-disk file.
Fixes were merged into mainline Linux on 21 May 2026 and included in Linux 7.1-rc5 on 24 May, with backports also delivered to stable and LTS branches. The vulnerability is especially risky for multi-tenant systems, CI runners, container hosts, and Kubernetes clusters because the page cache is shared across the host.