Dirty Frag is a new Linux bug putting your system at risk - and there's no easy fix yet

ZDNET describes the "Dirty Frag" Linux kernel vulnerability chain that targets xfrm-ESP (CVE-2026-43284) and RxRPC (CVE-2026-43500) to create page-cache write primitives enabling unprivileged accounts to escalate to root. Public proof-of-concept code was widely mirrored after an embargo break, Microsoft reported observed exploitation, and vendors recommend temporary mitigations (blacklisting esp4/esp6/rxrpc) and timely kernel updates and reboots.