Dirty Frag: Linux kernel hit by second major security flaw in two weeks

Executive summary: A newly disclosed pair of linked Linux kernel vulnerabilities called "Dirty Frag" (CVE-2026-43284 and CVE-2026-43500) permit memory corruption that can be chained to enable container escape and full administrative control; a broken embargo and the public release of working exploits prompted rapid patching by major distributions and raised concerns about an accelerating 'patch wave' driven by AI-assisted discovery of legacy flaws.