A week after CopyFail, the same researcher found another page cache escalation. Dirty Frag is a chain of two flaws in ESP (IPsec) and RxRPC. What it is, who is affected, and how to defend.

The new Vulnerabilities section in Kernel Security Checker: enter your kernel version, get a list of known public exploits matched to your kernel.

Comparison of three major kernel vulnerabilities: Dirty COW, Dirty Pipe and CopyFail. Different mechanisms, same result: page cache write and privilege escalation.

CVE-2026-31431 CopyFail — deterministic local privilege escalation via the algif_aead module. How it works, what’s affected, and how to protect yourself.