DEV Community

Cover image for DirtyClone Vulnerability Grants Root Access via Linux Kernel Networking Stack
BeyondMachines for BeyondMachines

Posted on • Originally published at beyondmachines.net

DirtyClone Vulnerability Grants Root Access via Linux Kernel Networking Stack

Summary

JFrog researchers report DirtyClone (CVE-2026-43503), a high-severity Linux kernel vulnerability that allows local users to gain root privileges by corrupting the system page cache through the networking stack. It's a major risk to multi-tenant cloud and containerized environments.

Take Action:

Patch your Linux kernel right away: update to your distribution's fixed version (for example, Ubuntu 24.04 needs 6.8.0-124.124 or later) and then reboot, because a patched-but-unrebooted machine is still vulnerable. Confirm with uname -r. If you can't patch immediately, reduce the risk by setting kernel.unprivileged_userns_clone=0 to block the privilege path this attack relies on.


Read the full article on BeyondMachines


This article was originally published on BeyondMachines

Top comments (0)