TECH NEWS

Another major Linux security issue uncovered - new Fragnesia flaw allows attackers to run malicious code as root

https://cdn.mos.cms.futurecdn.net/MRcAF4wnJU8Qb7Bv7Lb9yd-1920-80.jpg
  • New Linux kernel flaw CVE‑2026‑46300 “Fragnesia” allows local attackers to gain root
  • Discovered by William Bowling of Zellic;
  • PoC shows corruption of /usr/bin/su page cache to get root shell

Security researchers have discovered a new vulnerability in the Linux kernel which could allow malicious actors to run code with elevated privileges, exposing systems to risk of data theft, malware deployment, and even full device takeover.

The vulnerability is tracked as CVE-2026-46300, and was given a severity score of 7.8/10 (high). It’s nicknamed Fragnesia and is apparently in the same vulnerability class as Dirty Frag, another kernel bug that was disclosed recently.

While Dirty Frag chains multiple flaws, Fragnesia comes in the form of a logic bug in the Linux XFRM EST-in-TCP subsystem. By writing arbitrary bytes to the kernel page cache of read-only files, unprivileged local attackers can gain root privileges, thus compromising the entire system.

Patches and killswitches

...

Copyright of this story solely belongs to techradar.com. To see the full text click HERE

Read more

https://www.eu-startups.com/wp-content/uploads/2026/05/Untitled-design-2026-05-19T165310.544.jpg

Berlin-based bunch, an AI-native platform for managers and institutional investors to manage the entire fund lifecycle, raised a €30.1M Series B led by Portage

Sponsor Posts Niantic Spatial: World models need real-world data — Scaniverse is the gateway to spatial services — self-serve and built for AI and robotics. Large-area 3D reconstruction from 360° cameras and precise localization, anywhere machines operate. Protecting your Cloud Applications Data — Backing up Office 365, Google Workspace, Dropbox & Salesforce data