Skip to main content

Security Advisory: Proactive Protection Against Linux Kernel "Dirty Frag" Vulnerability

Kunal

Notice Date: May 8, 2026

Status: In-Progress / Proactive Mitigation

Vulnerability Reference: CVE-2026-43284, CVE-2026-43500 ("Dirty Frag")

Overview

Webscale has become aware of a critical Local Privilege Escalation (LPE) vulnerability in the Linux kernel networking subsystem, known as "Dirty Frag." This flaw allows an unprivileged user to bypass standard file permissions and gain root access by exploiting how the kernel handles encrypted network fragments.

Our security and infrastructure teams are currently taking proactive measures to secure all managed environments.

Impacted Services

This vulnerability affects standard Linux kernel versions released over the last several years. Because a public proof-of-concept (PoC) exploit is available, we are prioritizing mitigation across all managed fleets.

Actions Being Taken

To ensure the integrity of your data and the security of your instances, our team is performing the following actions:

  • Immediate Mitigation (Module Blacklisting): On systems where immediate reboots are not feasible, we are blacklisting the vulnerable kernel modules (esp4, esp6, and rxrpc) to neutralize the attack vector without requiring a restart.

  • Cache Sanitization: As a precaution, we are performing a synchronization and flush of the system page cache on high-priority servers to clear any potentially "dirtied" memory pages.

Maintenance Window & Customer Impact

  • Network Services: The mitigation involves disabling IPsec and RxRPC modules. If your application relies on these specific protocols for VPN tunnels or AFS file sharing, please reach out to our support team to discuss alternative configurations.

Our Commitment

At Webscale, security is our top priority. By addressing this "Zero-Day"- style vulnerability before it can be weaponized in your environment, we ensure the continued stability and safety of your infrastructure.

No action is required from you at this time. We will provide a follow-up notification once the patching cycle is complete for your specific environment.

Questions?

If you have concerns about how these changes might affect your specific application stack, please open a ticket via the Customer Portal or contact us at support@webscalenetworks.com

Related articles

Comments

0 comments

Please sign in to leave a comment.

Powered by Zendesk