"Fragnesia" is a variant of Dirty Frag vulnerability in the ESP/XFRM leading to Local Privilege Escalation (LPE) vulnerability in the Linux kernel
Summary
"Fragnesia" is a variant of Dirty Frag vulnerability in the ESP/XFRM leading to Local Privilege Escalation (LPE) vulnerability in the Linux kernel. Red Hat rates this important (CVSS 7.8). Weakness: CWE-123. Affected package(s): rhcos, kernel-rt, kernel, openshift, kpatch-patch. Resolved in Red Hat advisory RHSA-2026:23470 — update the affected packages (`sudo dnf update`).
- rhcos-412.86.202605271418-0
- kernel-rt-0:5.14.0-70.180.1.rt21.252.el9_0
- rhcos-414.92.202606231112-0
- kernel-0:5.14.0-687.10.1.el9_8
- kernel-0:5.14.0-570.116.1.el9_6
- rhcos-4.21.9.6.202606030721-0
- rhcos-4.19.9.6.202606031700-0
- openshift-0:4.21.0-202605142021.p2.geab2218.assembly.stream.el10
- kernel-0:6.12.0-211.8.el10nv
- kernel-rt-0:5.14.0-284.172.1.rt14.457.el9_2
- kernel-0:4.18.0-477.143.1.el8_8
- kernel-0:6.12.0-231.12.el10nv
Official advisory · high-confidence parse· fetched 4 hours ago·verify at source
- RHSA-2026:23470
Official advisory · high-confidence parse· fetched 4 hours ago·verify at source
Mitigation checklist
- Update the affected package(s) to the fixed version shipped in RHSA-2026:23470 (`sudo dnf update` / `yum update`).
Official advisory · high-confidence parse· fetched 4 hours ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.