Home/News/GhostLock Flaw Grants Root Access on Unpatched Linux Systems
The Hacker News2 min read

GhostLock Flaw Grants Root Access on Unpatched Linux Systems

Nebula Security researchers have disclosed GhostLock (CVE-2026-43499), a 15-year-old vulnerability within the Linux kernel that allows any authenticated user to achieve full root control over unpatched systems. This critical flaw, which has been present by default in nearly all major Linux distributions since 2011, requires no special permissions, unusual configurations, or network access to exploit. The vulnerability stems from a race condition in the kernel's handling of certain file operations, enabling an attacker to escalate privileges to root.

The disclosure highlights a significant ongoing security risk for a vast number of Linux deployments. While the specific details of the race condition have not been fully detailed by Nebula Security, they confirmed that the flaw impacts the kernel's memory management and inter-process communication mechanisms. The researchers have been working with major Linux vendors, including Red Hat, Canonical (Ubuntu), and SUSE, to develop and distribute patches. As of the disclosure, most vendors have released kernel updates addressing CVE-2026-43499, but systems that have not been actively updated remain vulnerable.

GhostLock's longevity is attributed to its subtle nature and the difficulty in detecting its exploitation without deep kernel-level monitoring. The vulnerability allows for a complete container escape, meaning that even within isolated containerized environments, an attacker could potentially gain access to the host system's root privileges. This makes it particularly dangerous for cloud infrastructure and modern containerized applications. Nebula Security has provided proof-of-concept exploit code to trusted partners and is urging all Linux users to apply the latest kernel updates immediately to mitigate the risk.

Original source — read the full reporting at the publisher:

Read on The Hacker News

Read next