CVE-2026-46300

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description Fragnesia is a local privilege escalation issue in the XFRM ESP-in-TCP subsystem. It allows an attacker to achieve a memory write primitive in the kernel, which can be used to corrupt the page cache memory of files readable by the user, such as the /usr/bin/su binary or /etc/passwd, to launch a shell with root privileges.

Recommendations Apply the available patch by running update tools. As a temporary workaround, assess whether esp4, esp6, and related xfrm/IPsec functionality can be safely disabled. Restrict unnecessary local shell access. Harden containerized workloads. Increase monitoring for abnormal privilege escalation activity.