Description:
The elevation of privilege vulnerabilities (DirtyClone, CVE-2026-43503 and pedit COW, CVE-2026-46331) are found in the Linux kernel. A local unprivileged attacker may leverage the vulnerabilities to escalate their privilege to root.
Reports indicated that proof-of-concept (PoC) exploit codes for elevation of privilege vulnerabilities (DirtyClone, CVE-2026-43503 and pedit COW, CVE-2026-46331) is publicly available and they are at high risk of exploitation. System administrators are advised to take immediate action to patch your affected systems to mitigate the elevated risk of cyber attacks.
Affected Systems:
DirtyClone, CVE-2026-43503
- Linux kernel versions 3.9 through 5.10.257 (excluding 5.10.257)
- Linux kernel versions 5.11 through 5.15.208 (excluding 5.15.208)
- Linux kernel versions 5.16 through 6.1.174 (excluding 6.1.174)
- Linux kernel versions 6.2 through 6.6.141 (excluding 6.6.141)
- Linux kernel versions 6.7 through 6.12.91 (excluding 6.12.91)
- Linux kernel versions 6.13 through 6.18.33 (excluding 6.18.33)
- Linux kernel versions 6.19 through 7.0.10 (excluding 7.0.10)
pedit COW, CVE-2026-46331
- Linux kernel versions 4.19.244 through 4.20 (excluding 4.20)
- Linux kernel versions 5.4.195 through 5.5 (excluding 5.5)
- Linux kernel versions 5.10.117 through 5.11 (excluding 5.11)
- Linux kernel versions 5.15.41 through 5.16 (excluding 5.16)
- Linux kernel versions 5.17.9 through 5.18
- Linux kernel versions 6.12 through 6.12.94 (excluding 6.12.94)
- Linux kernel versions 6.18 through 6.18.36 (excluding 6.18.36)
- Linux kernel versions 7.0 through 7.0.13 (excluding 7.0.13)
Impact:
Successful exploitation of the vulnerabilities could lead to elevation of privilege on an affected system.
Recommendation:
The vulnerabilities are fixed in some of the affected Linux distributions including Debian, Red Hat, SUSE and Ubuntu. The following is only a sample list of Linux distributions that are affected. The list is not exhaustive and it is strongly recommended to consult the product vendors if the used Linux systems are affected. System administrators should check with their product vendors to confirm if their Linux systems are affected and the availability of patches, and if so, apply the patches or follow the recommendations provided by the product vendors to mitigate the risk.
Debian
https://security-tracker.debian.org/tracker/CVE-2026-43503
Debian
https://security-tracker.debian.org/tracker/CVE-2026-46331
Red Hat
https://access.redhat.com/security/cve/cve-2026-43503
Red Hat
https://access.redhat.com/security/cve/cve-2026-46331
SUSE
https://www.suse.com/security/cve/CVE-2026-43503
SUSE
https://www.suse.com/security/cve/CVE-2026-46331
Ubuntu
https://ubuntu.com/security/CVE-2026-43503
Ubuntu
https://ubuntu.com/security/CVE-2026-46331
More Information:
- https://security-tracker.debian.org/tracker/CVE-2026-43503
- https://security-tracker.debian.org/tracker/CVE-2026-46331
- https://access.redhat.com/security/cve/cve-2026-43503
- https://access.redhat.com/security/cve/cve-2026-46331
- https://www.suse.com/security/cve/CVE-2026-43503
- https://www.suse.com/pt-br/security/cve/CVE-2026-46331
- https://ubuntu.com/security/CVE-2026-43503
- https://ubuntu.com/security/CVE-2026-46331
- https://github.com/sgkdev/packet_edit_meme
- https://nvd.nist.gov/vuln/detail/CVE-2026-43503
- https://nvd.nist.gov/vuln/detail/CVE-2026-46331
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-43503
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-46331