CVE-2026-43391

HIGH

nsfs: tighten permission checks for handle opening

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: nsfs: tighten permission checks for handle opening Even privileged services should not necessarily be able to see other privileged service's namespaces so they can't leak information to each other. Use may_see_all_namespaces() helper that centralizes this policy until the nstree adapts.

References (2)

Core 2

Core References

https://git.kernel.org/stable/c/1797ee11451f1b2be69863a9f5bd43b948813fdf

https://git.kernel.org/stable/c/d2324a9317f00013facb0ba00b00440e19d2af5e

Scores

CVSS v3 8.8

EPSS 0.0001

EPSS Percentile 3.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Details

Status published

Products (6)

Linux/Linux < 6.18

Linux/Linux 5222470b2fbb3740f931f189db33dd1367b1ae75 - 1797ee11451f1b2be69863a9f5bd43b948813fdf

Linux/Linux 5222470b2fbb3740f931f189db33dd1367b1ae75 - d2324a9317f00013facb0ba00b00440e19d2af5e

Linux/Linux 6.18

Linux/Linux 6.19.9 - 6.19.*

Linux/Linux 7.0

Published May 08, 2026

Tracked Since May 08, 2026