CVE-2026-43390

ANALYSIS PENDING

nstree: tighten permission checks for listing

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: nstree: tighten permission checks for listing Even privileged services should not necessarily be able to see other privileged service's namespaces so they can't leak information to each other. Use may_see_all_namespaces() helper that centralizes this policy until the nstree adapts.

References (2)

Core 2

Core References

https://git.kernel.org/stable/c/0abd81645fc95ec6a9d4e4813000f22c5efc0ff4

https://git.kernel.org/stable/c/8d76afe84fa2babf604b3c173730d4d2b067e361

Scores

EPSS 0.0002

EPSS Percentile 7.1%

Details

Status published

Products (6)

Linux/Linux < 6.19

Linux/Linux 6.19

Linux/Linux 6.19.9 - 6.19.*

Linux/Linux 7.0

Linux/Linux 76b6f5dfb3fda76fce1f9990d6fa58adc711122b - 0abd81645fc95ec6a9d4e4813000f22c5efc0ff4

Linux/Linux 76b6f5dfb3fda76fce1f9990d6fa58adc711122b - 8d76afe84fa2babf604b3c173730d4d2b067e361

Published May 08, 2026

Tracked Since May 08, 2026