Originally published at: CVE-2026-43284: Linux fixes an ESP decryption flaw tied to “Dirty Frag” reports - ToolsLib Blog
Linux has patched CVE-2026-43284 in the xfrm/ESP input path to avoid unsafe in-place decryption on shared fragments. Media link it to the “Dirty Frag” LPE chain, but only parts are confirmed. Here’s what’s known and what to do next.