CVE-2026-43391
8.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
nsfs: tighten permission checks for handle opening
Even privileged services should not necessarily be able to see other privileged service's namespaces so they can't leak information to each other. Use may_see_all_namespaces() helper that centralizes this policy until the nstree adapts.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 5222470b2fbb3740f931f189db33dd1367b1ae75 < 1797ee11451f1b2be69863a9f5bd43b948813fdf | affected |
| Linux | Linux | 5222470b2fbb3740f931f189db33dd1367b1ae75 < d2324a9317f00013facb0ba00b00440e19d2af5e | affected |
| Linux | Linux | 6.18 | affected |
| Linux | Linux | 0 < 6.18 | unaffected |
| Linux | Linux | 6.19.9 <= 6.19.* | unaffected |
| Linux | Linux | 7.0 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/1797ee11451f1b2be69863a9f5bd43b948813fdf
- https://git.kernel.org/stable/c/d2324a9317f00013facb0ba00b00440e19d2af5e
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.