GhostLock in Linux: a 15-year flaw grants root and container escape

Colleagues, I’d like to draw your attention to a cybersecurity development: GhostLock (CVE-2026-43499) has been identified in Linux.
The flaw has existed in the kernel since 2011 and affects most popular distributions.
A local user needs only ordinary actions to gain root access and break out of a container.
A patch is already available, but it is critical to install the current kernel version, not the first fix you find.
Priority checks should cover cloud hosts, container environments, and CI/CD.
Why it matters: a local issue can quickly become critical in multi-tenant infrastructure.
Have you already checked the kernel versions on your servers?
#Cybersecurity #Linux #Vulnerability #PatchManagement


Latest comments
No comments yet.