A new Linux local privilege escalation (LPE) vulnerability called Fragnesia has been publicly disclosed by V12 Security on the oss-security mailing list. It belongs to the same vulnerability class as the recently disclosed Dirty Frag, exploiting a logic bug in the ESP/XFRM code that allows arbitrary byte writes into the kernel page cache of read-only files. Proof-of-concept code is already available. A two-line patch targeting skbuff.c has been proposed but has not yet been merged into mainline Linux kernel releases.
Sort: