{"id":237427,"date":"2026-05-20T03:36:22","date_gmt":"2026-05-20T08:36:22","guid":{"rendered":"https:\/\/lifeboat.com\/blog\/2026\/05\/dirtydecrypt-poc-released-for-linux-kernel-cve-2026-31635-lpe-vulnerability"},"modified":"2026-05-20T03:36:22","modified_gmt":"2026-05-20T08:36:22","slug":"dirtydecrypt-poc-released-for-linux-kernel-cve-2026-31635-lpe-vulnerability","status":"publish","type":"post","link":"https:\/\/lifeboat.com\/blog\/2026\/05\/dirtydecrypt-poc-released-for-linux-kernel-cve-2026-31635-lpe-vulnerability","title":{"rendered":"DirtyDecrypt PoC Released for Linux Kernel CVE-2026\u201331635 LPE Vulnerability"},"content":{"rendered":"<p><a class=\"aligncenter blog-photo\" href=\"https:\/\/lifeboat.com\/blog.images\/dirtydecrypt-poc-released-for-linux-kernel-cve-2026-31635-lpe-vulnerability.jpg\"><\/a><\/p>\n<p>Dubbed <strong>DirtyDecrypt<\/strong> (aka DirtyCBC), the vulnerability was discovered and reported by the Zellic and V12 security team on May 9, 2026, only to be informed by the maintainers that it was a duplicate of a vulnerability that had already been patched in the mainline.<\/p>\n<p>\u201cIt\u2019s a rxgk pagecache write due to missing <a href=\"https:\/\/en.wikipedia.org\/wiki\/Copy-on-write\">COW<\/a> [copy-on-write] guard in rxgk_decrypt_skb,\u201d Zellic co-founder Luna Tong (aka cts and gf_256) <a href=\"https:\/\/github.com\/v12-security\/pocs\/tree\/main\/dirtydecrypt\">said<\/a> in a description shared on GitHub.<\/p>\n<p>Although the CVE identifier was not disclosed, the vulnerability in question is <a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2026-31635\">CVE-2026\u201331635<\/a> (CVSS score: 7.5) based on the fact that the NIST National Vulnerability Database (NVD) includes a link to the DirtyDecrypt PoC in its CVE record.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Dubbed DirtyDecrypt (aka DirtyCBC), the vulnerability was discovered and reported by the Zellic and V12 security team on May 9, 2026, only to be informed by the maintainers that it was a duplicate of a vulnerability that had already been patched in the mainline. \u201cIt\u2019s a rxgk pagecache write due to missing COW [copy-on-write] guard [\u2026]<\/p>\n","protected":false},"author":427,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1523,1492],"tags":[],"class_list":["post-237427","post","type-post","status-publish","format-standard","hentry","category-computing","category-security"],"_links":{"self":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/237427","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/users\/427"}],"replies":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/comments?post=237427"}],"version-history":[{"count":0,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/237427\/revisions"}],"wp:attachment":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/media?parent=237427"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/categories?post=237427"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/tags?post=237427"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}