Tails 7.9.1 Patches DirtyClone Kernel Flaw, Updates Tor Browser

The team behind Tails – the amnesic incognito live system – has released version 7.9.1. This is a security-focused update that addresses a recently disclosed kernel vulnerability known as DirtyClone and refreshes the included Tor Browser. For anyone who relies on Tails for anonymous browsing, journalism, or activism, this is an update worth applying promptly.

What Happened

Tails 7.9.1 patches a privilege escalation vulnerability in the Linux kernel’s clone() system call, widely referred to as DirtyClone. The flaw allows an attacker who already has local access to the system to escalate privileges and gain root-level control. Because Tails runs on a live Linux kernel, it was affected by the same issue until this release.

Alongside the kernel fix, the update bundles a newer version of Tor Browser (based on Firefox ESR 115.x, 13.5.2 or equivalent). Tor Browser is the primary tool for anonymous web browsing in Tails, so keeping it current matters for both privacy and security.

The release also includes other smaller updates and bug fixes. The official changelog is available on the Tails website.

Why It Matters

Tails is designed to leave no trace when you shut it down and to route all traffic through Tor. That protection depends on the operating system being fully patched. A kernel-level privilege escalation like DirtyClone could break that trust: an attacker who gains local access – for example, through a compromised USB drive or a malicious application – could use the flaw to bypass Tails’ security restrictions and tamper with the system or extract data.

For journalists, activists, and others relying on Tails for sensitive work, staying current with updates reduces risk. The Tor Browser update also addresses any known vulnerabilities in the browsing environment, which is especially important given that attackers often target Tor users.

What Readers Can Do

If you’re already using Tails, upgrading to 7.9.1 is straightforward. The recommended method is to use the automatic upgrade tool within Tails:

  1. Start Tails as usual.
  2. Open the Tails Installer from the Applications menu.
  3. Select “Upgrade from another Tails” if you have a USB drive with Tails already installed, or use the automatic upgrade notification that appears when you connect to the internet.
  4. Follow the on-screen prompts.

Alternatively, you can download the new ISO from the Tails website and create a fresh USB installation using the Tails Installer or a tool like Etcher.

The upgrade process does not affect your persistent storage (if you use it), but it’s always wise to have a backup of any important persistent data before upgrading.

Important: Because DirtyClone is a known vulnerability, delaying the upgrade leaves your device exposed. Install the update as soon as practical.

Sources