Linux bitten by second severe vulnerability in as many weeks

A new Linux kernel vulnerability dubbed 'Dirty Frag' (CVE-2026-43284 and CVE-2026-43500) allows low-privilege users and container users to gain root access on affected systems. The exploit is deterministic, stealthy (no crashes), and works across virtually all Linux distributions. Proof-of-concept code was leaked and then published by the original researcher, effectively making it a zero-day. Microsoft has observed signs of in-the-wild exploitation. Patches are now available from Debian, AlmaLinux, and Fedora, and users are urged to apply them immediately. This is the second severe Linux privilege escalation vulnerability disclosed within two weeks.