DEBIAN-CVE-2026-43403

DEBIAN-CVE-2026-43403 PUBLISHED CVSS 8.800000190734863 HIGH

In the Linux kernel, the following vulnerability has been resolved: nsfs: tighten permission checks for ns iteration ioctls Even privileged services should not necessarily be able to see other privileged service's namespaces so they can't leak information to each other. Use may_see_all_namespaces() helper that centralizes this policy until the nstree adapts.

Risk Scores

CVSS v3.1

8.800000190734863

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
Debian:14	linux	0, 6.12.38-1, 6.12.41-1
Debian:13	linux	0, 6.12.38-1, 6.12.41-1

Timeline

May 8, 2026 CVE Published
May 12, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2026-43403 advisory

Open in Interactive Console →