PulseAugur
实时 09:10:33
English(EN) Critical New Linux Zero-Day Leaked—What Admins Need To Do Now

关键的 Linux Dirty Frag 零日漏洞已披露

一个名为 Dirty Frag (CVE-2026-43284) 的关键零日漏洞已在 Linux 内核中公开披露。该漏洞存在于 algif_aead 加密算法接口中约九年,允许攻击者在主流 Linux 发行版上获得 root 权限。由于禁令被打破,该漏洞被过早披露,并且概念验证 (proof-of-concept) 漏洞利用代码已可用,这增加了在补丁准备就绪之前发生大规模攻击的风险。 AI

影响 此漏洞不直接影响 AI 模型或操作,但凸显了基础软件基础设施中持续存在的安全挑战。

排序理由 披露了具有可用漏洞利用代码的零日漏洞,影响了广泛使用的操作系统。

在 Forbes — Innovation 阅读 →

AI 生成摘要 · Google Gemini · 来自 2 个来源。 我们如何撰写摘要 →

关键的 Linux Dirty Frag 零日漏洞已披露

报道来源 [2]

  1. Forbes — Innovation TIER_1 English(EN) · Davey Winder, Senior Contributor ·

    Critical New Linux Zero-Day Leaked—What Admins Need To Do Now

    Dirty Frag, a critical Linux kernel zero-day vulnerability with no patch and giving hackers root, has gone public after an embargo was broken. Here’s the workaround.

  2. Mastodon — fosstodon.org TIER_1 English(EN) · [email protected] ·

    Linux is getting a security wake-up call - why it was inevitable and I'm not worried Serious Linux vulnerabilities, like Copy Fail and Dirty Frag, are becoming

    Linux is getting a security wake-up call - why it was inevitable and I'm not worried Serious Linux vulnerabilities, like Copy Fail and Dirty Frag, are becoming more common. Here's why, and how the Linux development community is responding. https://www. zdnet.com/article/linux-sec…