•1 min read•from InfoQ
Copy Fail and Dirty Frag: Linux Page-Cache Exploits Target Every Major Distribution
Our take
Two significant vulnerabilities have been identified in the Linux kernel: Copy Fail (CVE-2026-31431) disclosed on April 29, 2026, and Dirty Frag (CVE-2026-43284 and CVE-2026-43500) revealed on May 7, 2026. Both exploits enable local users to gain root access, posing a critical risk to numerous Linux distributions. These vulnerabilities leverage weaknesses in the page cache across different subsystems, underscoring the urgent need for affected organizations to implement patches promptly. Staying ahead of these threats is essential for
Two recent Linux kernel vulnerabilities have been disclosed: Copy Fail (CVE-2026-31431) on April 29, 2026, and Dirty Frag (CVE-2026-43284 and CVE-2026-43500) on May 7, 2026. Both allow local users to gain root access, affecting multiple Linux distributions. These vulnerabilities exploit flaws in the page cache via different subsystems, necessitating immediate patching by affected organizations.
By Matt SaundersRead on the original site
Open the publisher's page for the full experience
Tagged with
#rows.com#Linux#kernel#vulnerabilities#Copy Fail#Dirty Frag#root access#page cache#CVE-2026-31431#CVE-2026-43284#CVE-2026-43500#Linux distributions#exploit#local users#patching#flaws#subsystems#organizations#disclosed#April 29, 2026