<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Linux-Kernel on CuraSec</title><link>https://curasec.metacog.co.kr/tags/linux-kernel/</link><description>Recent content in Linux-Kernel on CuraSec</description><generator>Hugo</generator><language>en-us</language><lastBuildDate>Sun, 12 Jul 2026 11:56:34 +0000</lastBuildDate><atom:link href="https://curasec.metacog.co.kr/tags/linux-kernel/index.xml" rel="self" type="application/rss+xml"/><item><title>Dirty Frag CVE-2026-43284: Linux LPE with Public PoC, EPSS 0.93</title><link>https://curasec.metacog.co.kr/insights/2026-07-12-dirty-frag-cve-2026-43284-the-second-linux-root-exploit-in-e/</link><pubDate>Sun, 12 Jul 2026 11:56:34 +0000</pubDate><guid>https://curasec.metacog.co.kr/insights/2026-07-12-dirty-frag-cve-2026-43284-the-second-linux-root-exploit-in-e/</guid><description>&lt;ul>
&lt;li>&lt;strong>Engineer — Act:&lt;/strong> EPSS 0.93 plus a public GitHub PoC makes exploitation practical now — patch the Linux kernel to the distro-provided fixed package (check RHEL, Ubuntu, Debian advisories) across all Linux hosts and container base images within your patch window.&lt;/li>
&lt;li>&lt;strong>SOC/IR — Act:&lt;/strong> With a public PoC and EPSS 0.93, exploitation attempts are likely imminent; hunt for anomalous privilege escalation events on Linux endpoints since PoC publication and tune EDR/SIEM rules for kernel LPE behavior patterns.&lt;/li>
&lt;li>&lt;strong>Leader — Plan:&lt;/strong> A second high-severity Linux LPE with a public PoC in eight days signals a pattern worth tracking; confirm your Linux patch cadence will address this within days and assess the size of your externally accessible Linux estate.&lt;/li>
&lt;li>&lt;strong>Signals:&lt;/strong> CVE-2026-43284 — CISA KEV: not listed, EPSS 0.93, public PoC on GitHub&lt;/li>
&lt;/ul></description></item><item><title>Linux Kernel Rust Code Receives Its First CVE</title><link>https://curasec.metacog.co.kr/insights/2026-07-12-linux-kernel-rust-code-sees-its-first-cve-vulnerability/</link><pubDate>Sun, 12 Jul 2026 11:56:34 +0000</pubDate><guid>https://curasec.metacog.co.kr/insights/2026-07-12-linux-kernel-rust-code-sees-its-first-cve-vulnerability/</guid><description>&lt;ul>
&lt;li>&lt;strong>Engineer — Learn:&lt;/strong> Notable milestone — Rust in the kernel is not immune to CVEs; no exploitation signals, PoC, or KEV listing, so no immediate patching action, but worth tracking this new vulnerability class as Rust kernel code expands.&lt;/li>
&lt;li>&lt;strong>SOC/IR — Skip&lt;/strong>&lt;/li>
&lt;li>&lt;strong>Leader — Skip&lt;/strong>&lt;/li>
&lt;/ul></description></item></channel></rss>