Ubuntu

May 9, 2026 · Information Security

Dirty Frag: A 9‑Year‑Old Linux Kernel LPE Chain That Gives Root with One Command

The newly disclosed Dirty Frag vulnerability combines CVE‑2026‑43284 and CVE‑2026‑43500 to provide a local‑privilege‑escalation chain that can turn any unprivileged user into root on all Ubuntu releases with a single command, and the article explains its mechanics, impact, and emergency mitigations.