Bad Epoll in Linux: a vulnerability granting root access to standard users and affecting Android

Colleagues, here is an important cybersecurity update: Bad Epoll (CVE-2026-46242) has been discovered in Linux and Android.
The Linux kernel contains a use-after-free in epoll that allows a local unprivileged user to escalate privileges to root. The issue affects desktops, servers, and Android, and a working exploit has already been demonstrated by a researcher.
What is especially concerning is that the attack can be launched even from the Chrome renderer sandbox. There are no signs of active exploitation yet, and fixes are already available upstream and in backports.
Why this matters: without the patch, the risk of system compromise remains high, especially on Linux 6.4+.
Have you checked whether your systems are affected?
#cybersecurity #Linux #Android #vulnerabilities


Latest comments
No comments yet.