CVE-2026-43403

Published: May 8, 2026Modified: May 21, 2026

8.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Exploitability: 2.0 / Impact: 6.0

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (Secondary)

Description

In the Linux kernel, the following vulnerability has been resolved: nsfs: tighten permission checks for ns iteration ioctls Even privileged services should not necessarily be able to see other privileged service's namespaces so they can't leak information to each other. Use may_see_all_namespaces() helper that centralizes this policy until the nstree adapts.

Affected (5)

Products: Linux: Linux Kernel

Linux

1 product

Linux Kernel

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	From 6.12 to 6.12.78
Linux Linux Kernel	From 6.13 to 6.18.20
Linux Linux Kernel	From 6.19 to 6.19.9
Linux Linux Kernel	Version 7.0 rc1
Linux Linux Kernel	Version 7.0 rc2

References (4)

https://git.kernel.org/stable/c/0ad650e60150eda789deca5e78a6a09d26bf8fc9

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/2f3dea284c761c890d676f77d5e55c0c496b4ef4

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/3376b345df155ca36d8611857b41ff7d5183fc38

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/e6b899f08066e744f89df16ceb782e06868bd148

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

Timeline

No history available yet.