CVE-2026-43403

HIGH

nsfs: tighten permission checks for ns iteration ioctls

Title source: cna
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: nsfs: tighten permission checks for ns iteration ioctls Even privileged services should not necessarily be able to see other privileged service's namespaces so they can't leak information to each other. Use may_see_all_namespaces() helper that centralizes this policy until the nstree adapts.

Scores

CVSS v3 8.8
EPSS 0.0013
EPSS Percentile 2.9%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Details

Status published
Products (15)
linux/Kernel 6.12.0 - 6.12.78linux
linux/Kernel 6.13.0 - 6.18.20linux
linux/Kernel 6.19.0 - 6.19.9linux
Linux/Linux < 6.12
Linux/Linux 6.12
Linux/Linux 6.12.78 - 6.12.*
Linux/Linux 6.18.20 - 6.18.*
Linux/Linux 6.19.9 - 6.19.*
Linux/Linux 7.0
Linux/Linux a1d220d9dafa8d76ba60a784a1016c3134e6a1e8 - 0ad650e60150eda789deca5e78a6a09d26bf8fc9
... and 5 more
Published May 08, 2026
Tracked Since May 08, 2026