New DirtyClone Linux Kernel Flaw Lets Local Users Gain Root via Cloned Packets

A new Linux kernel vulnerability, dubbed DirtyClone and part of the DirtyFrag family, allows local users to gain root privileges. JFrog Security Research published a working exploit walkthrough for the flaw on June 25, marking the first public demonstration for this specific variant. The vulnerability, tracked as CVE-2026-43503 with a CVSS score of 8.8, enables a local user to corrupt file-backed memory by utilizing a cloned network packet. This corruption ultimately leads to privilege escalation, granting the attacker root access. The patch for this vulnerability was integrated into the Linux kernel.