< BACK TO NEWS
importantSYS.SOURCE: The Hacker News2026-07-08T11:46:44+05:30

15-Year-Old Linux Kernel Vulnerability Allows Root Access and Container Escape

#Linux#Kernel Security#Container Security#Privilege Escalation#Vulnerability

A 15-year-old Linux kernel vulnerability (CVE-2026-43499) allows local users to gain root access and escape containers on most Linux distributions. The flaw, discovered by Nebula Security, has been patched but remains unpatched in many systems, with working exploit code publicly available.

Researchers at Nebula Security have disclosed GhostLock (CVE-2026-43499), a 15-year-old Linux kernel flaw that lets any logged-in user take full root control of a machine that has not been patched.

The vulnerable code has shipped by default in essentially every mainstream distribution since 2011. The flaw needs no special permission, no unusual settings, and no network

Read original article

*** END OF TRANSMISSION ***

> JUDGE APPROVES $1.5M SEC SETTLEMENT FOR ELON MUSK DESPITE CONCERNS> AI CHEATING ALLEGATIONS LEAD TO IN-PERSON FINAL AT IVY LEAGUE INSTITUTION, RESULTING IN 50% SCORE DROP> LOVABLE AIMS TO DOUBLE VALUATION TO $13.2 BILLION IN NEW FUNDING ROUND> BUN PROJECT'S TRANSITION TO RUST FOR ENHANCED STABILITY AND SAFETY> US FEDERAL AGENCIES URGE AUTONOMOUS VEHICLE DEVELOPERS TO CEASE INTERFERENCE WITH EMERGENCY RESPONDERS> OPEN SOURCE BARWARE: FREE LOCAL-FIRST BAR INVENTORY SOFTWARE UNDER GPLV3 LICENSE> AUDIT REVEALS 30% OF SWE-BENCH PRO TASKS CONTAIN EVALUATION FLAWS> ANTHROPIC'S FABLE CLASSIFIER OVERLY RESTRICTIVE IN TECHNICAL TASKS> AI-POWERED LOCAL DOCUMENT SEARCH ENGINE FOR KNOWLEDGE MANAGEMENT> GOOGLE'S SYNTHID DEEPFAKE DETECTOR IDENTIFIES AI-GENERATED HOAX IMAGE OF MITCH MCCONNELL> JUDGE APPROVES $1.5M SEC SETTLEMENT FOR ELON MUSK DESPITE CONCERNS> AI CHEATING ALLEGATIONS LEAD TO IN-PERSON FINAL AT IVY LEAGUE INSTITUTION, RESULTING IN 50% SCORE DROP> LOVABLE AIMS TO DOUBLE VALUATION TO $13.2 BILLION IN NEW FUNDING ROUND> BUN PROJECT'S TRANSITION TO RUST FOR ENHANCED STABILITY AND SAFETY> US FEDERAL AGENCIES URGE AUTONOMOUS VEHICLE DEVELOPERS TO CEASE INTERFERENCE WITH EMERGENCY RESPONDERS> OPEN SOURCE BARWARE: FREE LOCAL-FIRST BAR INVENTORY SOFTWARE UNDER GPLV3 LICENSE> AUDIT REVEALS 30% OF SWE-BENCH PRO TASKS CONTAIN EVALUATION FLAWS> ANTHROPIC'S FABLE CLASSIFIER OVERLY RESTRICTIVE IN TECHNICAL TASKS> AI-POWERED LOCAL DOCUMENT SEARCH ENGINE FOR KNOWLEDGE MANAGEMENT> GOOGLE'S SYNTHID DEEPFAKE DETECTOR IDENTIFIES AI-GENERATED HOAX IMAGE OF MITCH MCCONNELL