Tails 7.7.3 Emergency Update Addresses DirtyFrag Vulnerability

Tails 7.7.3 Emergency Update Addresses DirtyFrag Vulnerability

First seen 12 May 2026, 09:43 UTC Blog.TorprojectHeise.Details.net 83% similarity 72.3

Article Content

Browse articles
ThreatCluster

An emergency update for Tails, the Linux distribution for anonymous browsing, has been released to fix a critical vulnerability in the Linux kernel known as DirtyFrag (CVE-2026-43284). This vulnerability could allow local attackers to escalate privileges and potentially deanonymize users. The update, version 7.7.3, also includes updates for the Tor Browser, Tor client, and Thunderbird. Users are urged to apply this update immediately, especially those running Tails from USB sticks. Other affected systems include NAS devices from Qnap, which are investigating their vulnerabilities related to DirtyFrag. Synology has reported that its products are not affected by these vulnerabilities. No active exploitation of the DirtyFrag vulnerability has been confirmed in the wild as of now.

Key Points: • Tails 7.7.3 fixes the critical DirtyFrag vulnerability allowing privilege escalation. • Users are advised to update immediately to prevent potential deanonymization. • Qnap is investigating vulnerabilities related to DirtyFrag, while Synology reports no impact.

ThreatCluster AI

Timeline

2026-05-08
CVE-2026-43284 published
The DirtyFrag vulnerability was publicly disclosed, allowing privilege escalation on affected systems.
Heise.De
2026-05-09
First public PoC for CVE-2026-43500
A proof of concept for a related vulnerability was released, heightening security concerns.
Heise.De
2026-05-11
CVE-2026-43500 published
A second vulnerability related to DirtyFrag was disclosed, prompting further investigations by vendors.
Heise.De
2026-05-12
Tails 7.7.3 released
Tails released an emergency update to address DirtyFrag and other vulnerabilities, urging users to upgrade.
Blog.Torproject

Community

Browse all →