Security advisory #3

Information

State: published
Published at: 2026-05-13 00:00:00 CEST
CVEs: CVE-2026-46300
Name: Fragnesia
Summary: English: Local privilege escalation
Česky: Lokální eskalace oprávnění
Description: English: Bug in the Linux kernel XFRM ESP-in-TCP subsystem leading to local privilege escalation.
Česky: Chyba v subsystému XFRM ESP-in-TCP v linuxovém jádře umožňující lokální eskalaci oprávnění.
Response: English: No nodes were affected, required kernel module was not loaded. Fixed in kernel 6.12.91.
Česky: Žádné nody nebyly dotčené, potřebný kernelový modul nebyl načtený. Opraveno v kernelu 6.12.91.

Node status

Node State Vulnerable until Mitigated since Note
node19.prg not affected - -
node20.prg not affected - -
node21.prg not affected - -
node22.prg not affected - -
node23.prg not affected - -
node24.prg not affected - -
node25.prg not affected - -
backuper2.prg not affected - -
node5.brq not affected - -
node6.brq not affected - -
node1.pgnd not affected - -
node1.stg not affected - -
node2.stg not affected - -

Updates

Date Summary Reported by
No updates posted.

Security advisories

Support vpsFree.cz

Support mail: podpora@vpsfree.cz

Links

Status
https://status.vpsf.cz

IRC
irc.libera.chat #vpsfree

Matrix
#vpsfree:matrix.org

Discourse
https://discourse.vpsfree.cz

Knowledge base
Česky: https://kb.vpsfree.cz/
English: https://kb.vpsfree.org/

Sysadmins contacts

Jakub Skokan
IRC: aither at #vpsfree
Phone: +420 775 386 453

Pavel Snajdr (main admin)
IRC: snajpa at #vpsfree
Phone: +420 720 107 791