Threat Intelligence Alert | In-Depth Technical Analysis: New Fragnesia Variant (fragnesia-5db89c99566fc) — Bypass of CVE-2026-46300 Patch V12 Security has released a fully functional PoC for a new bypass of the previously merged fix (commit f84eca581739) for CVE-2026-46300 (Fragnesia). This marks the latest iteration in the Dirty Frag family of Linux kernel Local Privilege Escalation (LPE) vulnerabilities targeting the XFRM ESP-in-TCP subsystem. 🔍 Root Cause (net/core/skbuff.c — skb_segment()) When constructing GSO segments from an skb that contains a frag_list, the SKBFL_SHARED_FRAG flag is propagated only from the head skb. Members of the frag_list carrying page-cache-backed fragments with the flag set lose this marker during segmentation. Consequence: the resulting segments bypass the skip_cow() check inside esp_input(), enabling AES-GCM decryption in-place directly over page cache pages — the exact same powerful primitive used by previous Dirty Frag and Fragnesia exploits. 🔬 Deterministic Trigger Chain 1. Three network namespaces connected via veth pairs (sender → forwarder → receiver). 2. Sender performs send() splice() (from the same read-only file) on the identical TCP connection. 3. GRO coalescing on the forwarder merges both packets within the same NAPI poll: • send() → head skb (no flag) • splice() → frag_list (with SKBFL_SHARED_FRAG) 4. GSO is disabled on the forwarder’s egress interface, forcing skb_segment(). 5. The flag is lost on the generated segments. 6. Segments arrive at the receiver with ESP-in-TCP active, allowing controlled 1-byte arbitrary writes into the page cache via the AES-GCM keystream. The exploit iterates a small ELF payload, automatically locates and overwrites a SUID-root binary (with automatic backup), and spawns a root shell. The page cache modification is non-persistent on disk and can be cleared with drop_caches. ✅ Full working PoC (including skb_segment_exploit.c, Makefile and detailed README): github.com/v12-security/pocs… 📌 References: • Original Fragnesia (CVE-2026-46300): github.com/v12-security/pocs… • V12 Security: v12.sh ❌ No patch is currently available in mainline or netdev trees for this bypass. Immediate Mitigation (identical to Dirty Frag / Fragnesia): • sudo modprobe -r esp4 esp6 rxrpc • Blacklist the modules esp4, esp6 and rxrpc System administrators and SOC teams should apply this mitigation immediately and monitor for XFRM/ESP module loading. #Linux #KernelLinux #CVE202646300 #Fragnesia #DirtyFrag #LPE #PrivilegeEscalation #XFRM #ESPinTCP #LinuxKernel #CyberSecurity #InfoSec #ThreatIntelligence #Vulnerability #OSINT #LinuxSecurity #KernelSecurity #RedTeam #BlueTeam #SysAdmin #DevOps #VulnMgmt #CyberThreat

Hace 32 años se publicó la versión 1.0.0 del #kernelLinux El 14 de marzo de 1994 el programador finlandés Linus Torvalds publicó la versión 1.0.0 este proyecto contaba con un aproximado de 176.250 líneas de código. Linux es el núcleo del sistema GNU/Linux y su mascota es Tux 🐧

In honor of the 25th anniversary of @LFNW we're sharing memories of the last 10 years attending the fest! What's your favorite LinuxFest Northwest memory? Share in the comments! @Jupitersignal @kernellinux @chrislas blog.system76.com/post/10-ye…

Android: sviluppo interno da aprile (ma resta open source) #Android #AOSP #CodiceSorgente #Developer #GMS #Google #GoogleMobileServices #GPLv2 #KernelLinux #Notizie #Novità #OpenSource #Sviluppatori #Sviluppo #TechNews #Tecnologia ceotech.it/android-sviluppo-…

🌟 #Kernel Linux 6.13: Correções e o futuro do Linux! Entenda as mudanças no suporte ao Intel Lunar Lake e tendências como IA e segurança. Leia mais no blog! #Linux #KernelLinux

Kernel Linux 6.10 lançado com todos os tipos de refinamentos essenciais ➤ livreeaberto.com/kernel-linu… #KernelLinux #Linux

Oh no! I'm sorry this happened, Noah. Please DM us so we can help make this right. *Ramea x.com/messages/compose?recip…

New on Fountain | Ask Noah Show A weekly talk radio show and podcast where @kernellinux answers your questions about open source or running a business with open source. You can now support the show as you listen on Fountain. 🔗fountain.fm/show/9EobPWDy8WO…

Join the @jupitersignal crew and friends at @lfnw today as we live stream from the fest. Chris, Wes, Brent, Alex, Noah, and more will be there! fountain.fm/live/UzToAddTNRB… @chrislas @wespayne @brentgervais @ironicBadger @kernellinux @LINUXUnplugged, @SelfHostedShow, @jupiterEXTRAS.

On this week's Ask Noah Show, I join @Kernellinux and @ricktimmis to discuss Kubuntu, where we go over the details you need to know about its past, present, and future. You can listen to the episode here, or on a podcast app near you: podcast.asknoahshow.com/377

On the latest episode of @asknoahshow, @Kernellinux and @linuxovens interview @AjitPai, former Chairman of the FCC. Incredible interview! podcast.asknoahshow.com/375

É oficial: o kernel Linux 6.6 será LTS, suportado até dezembro de 2026 ➤ livreeaberto.com/linux-kerne… #Linux #Kernel #KernelLinux

This week on @asknoahshow, @Kernellinux goes through his experiences at the #UbuntuSummit, along with a detailed walkthrough of Juju. He makes some excellent points I haven't heard elsewhere yet, and has an exclusive interview with a special guest from @Canonical. 😉 It is really worth a listen, here's the link (but you can find it on a podcast platform near you): podcast.asknoahshow.com/362

Bitchen! Wish I could be there

Xiaomi HyperOS: tutto quello che sappiamo finora #Android #Android14 #HyperConnect #HyperOS #Innovazione #KernelLinux #MobileNews #Notizie #Novità #Smartphone #TechNews #Tecnologia #Telefonia #Xiaomi #Xiaomi14 #Xiaomi14Pro #XiaomiHyperOS #XiaomiVela ceotech.it/xiaomi-hyperos-tu…

#SabiasQue Un día como hoy hace 32 años el estudiante finlandés Linus Torvalds anunciaba el desarrollo del kernel #Linux 🐧 ¡Happy Birthday! 🥳🎂 #OpenSource #KernelLinux

Linux Birthday 2023: impreza.host/logos - -Today we enthusiastically celebrate the anniversary of one of the most significant milestones in the history of technology. - #happylinuxbirthday #imprezahost #linux #kernellinux #serverlinux #cloudserver #linuxhosting

@AntonioMinnella ci spiega tutti i dettagli tecnici della falla #stackrot e come risolverla. Grazie anche a #PierluigiPaganini @securityaffairs per aver illustrato perché la falla nel #KernelLinux è pericolosa. cybersecurity360.it/news/ker…

Great conversation with @Kernellinux. Thanks for having me on the @asknoahshow!

Linus Torvalds anuncia o primeiro candidato a lançamento do Kernel Linux 6.4 ➤ livreeaberto.com/linus-torva… #LinuxTorvalds #Linux #KernelLinux #LinuxKernel