Issue
Customers ask whether CloudLinux OS is affected by Fragnesia (CVE-2026-46300), whether the Dirty Frag mitigation also protects against Fragnesia, which kernel version should be installed, or whether KernelCare already provides a livepatch.
Environment
- CloudLinux
- TuxCare
- KernelCare
- TuxCare live patching services
- Fragnesia / CVE-2026-46300
Solution
Refer to the official CloudLinux advisory for the current mitigation steps, affected CloudLinux versions, kernel update instructions, and KernelCare livepatch status:
https://blog.cloudlinux.com/fragnesia-mitigation-and-kernel-update
For incident-level updates and the latest status summary, refer to:
https://cloudlinux.statuspage.io/incidents/c04qtfb9pxy4
Fragnesia is a separate vulnerability from Dirty Frag, but it belongs to the same XFRM/ESP class, and the immediate mitigation is identical. Customers who have already applied the Dirty Frag mitigation do not need to repeat it unless the official advisory is updated with new instructions.
Cause
Fragnesia (CVE-2026-46300) is a Linux kernel local privilege escalation vulnerability related to the XFRM/ESP area. CloudLinux is tracking affected versions, mitigation, kernel update availability, and KernelCare livepatch coverage in the official advisory.
Comments
0 comments
Please sign in to leave a comment.