Linux distributions are warning users about Fragnesia, a new kernel flaw tracked as CVE-2026-46300 that can let a local attacker escalate privileges to root through the XFRM ESP-in-TCP subsystem. Microsoft says the issue is similar to Dirty Frag and Copy Fail, urges immediate patching, and notes that while a PoC exists, there is no evidence of in-the-wild exploitation. #Fragnesia #CVE-2026-46300 #DirtyFrag #CopyFail #Microsoft
Keypoints
- Fragnesia is a Linux kernel vulnerability tracked as CVE-2026-46300.
- The flaw affects the XFRM ESP-in-TCP subsystem and can lead to root access.
- A local attacker can exploit it to overwrite sensitive system files.
- Most Linux distributions are affected and are releasing patches.
- Microsoft urges organizations to apply patches quickly, even though no in-the-wild exploitation is confirmed.