CVE Tools
Back to feed
Хакер (xakep.ru) ·RU-RU Restricted

Linux-уязвимость DirtyClone помогает повысить права до уровня root

By Мария Нефёдова··2 min read
CVE Tools coverage

Researchers at JFrog disclosed the DirtyClone local privilege escalation vulnerability in the Linux kernel, tracked as CVE-2026-43503 (CVSS 8.8), and published a PoC. The flaw lets an attacker use zero-copy networking to modify pages in the host’s page cache—enabling tampering with instructions in a privileged binary (e.g., /usr/bin/su) and ultimately obtaining root access without changing the on-disk file.

Fixes were merged into mainline Linux on 21 May 2026 and included in Linux 7.1-rc5 on 24 May, with backports also delivered to stable and LTS branches. The vulnerability is especially risky for multi-tenant systems, CI runners, container hosts, and Kubernetes clusters because the page cache is shared across the host.