Two distinct Linux kernel local privilege escalation vulnerabilities, CVE-2026-46331 (‘pedit COW’) and CVE-2026-43503 (‘DirtyClone’), both carry public working exploits released within 24 hours of disclosure and both operate entirely in memory with no on-disk writes. Standard file-integrity monitoring is blind to both. Any Linux system where an unprivileged user can obtain a local shell is fully compromised if unpatched.