New DirtyClone Linux Vulnerability Allows Attackers to Gain Root Access Via Cloned Packets

The DirtyClone vulnerability (CVE-2026-43503) is a high-severity Linux kernel flaw that allows unprivileged users to gain root access by manipulating cloned network packets within the XFRM/IPsec subsystem. Attackers exploit the improper handling of the SKBFL_SHARED_FRAG flag to modify cached system files without leaving detectable logs or audit trails.