Security Vulnerability in Linux Kernel Affecting Data Packet Handling
CVE-2026-43500

7.8HIGH

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 11 May 2026

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 93%📰 News Worthy

What is CVE-2026-43500?

A vulnerability in the Linux kernel's handling of DATA and RESPONSE packets can lead to improper unsharing of externally-owned paged fragments. When certain conditions are met, particularly under the presence of cloned SKBs and chained fragment lists, the in-place decryption path is inadvertently utilized, potentially exposing sensitive data. This vulnerability extends the gate for unsharing to also cover cases where skb_has_frag_list() or skb_has_shared_frag() is active, thereby addressing risks associated with splice-loopback vectors while maintaining efficient processing for kernel-private fragments.

Affected Version(s)

Linux d0d5c0cd1e711c98703f3544c1e6fc1372898de5 < 7c504ffab3efce8f7e4f463b314ae31030bdf18b

Linux d0d5c0cd1e711c98703f3544c1e6fc1372898de5 < 3711382a77342a9a1c3d2e7330dcfc7ea927f568

Linux d0d5c0cd1e711c98703f3544c1e6fc1372898de5 < 3eae0f4f9f7206a4801efa5e0235c25bbd5a412c

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

dirty_frag_mitigation
Created by vorkampfer

News Articles

Zdnet

CVE-2026-43284 CVE-2026-43500

Dirty Frag is a new Linux bug putting your system at risk - and there's no easy fix yet

This Linux kernel vulnerability has defenders scrambling. Here's which systems are affected - and what you should do ASAP.

Dark Reading

CVE-2026-43284 CVE-2026-43500

Dirty Frag Exploit Poised to Blow Up on Enterprise Linux Distros

The privilege escalation vulnerability, which is similar to other Linux flaws like Copy Fail and Dirty Pipe, may already be under limited exploitation.