PT-2026-41298 · Linux+4 · Linux Kernel+4
Alexander Peslyak
+1
·
Published
2026-05-15
·
Updated
2026-07-02
·
CVE-2026-46333
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 7.0.8
Linux kernel versions prior to 6.18.31
Linux kernel versions prior to 6.12.89
Linux kernel versions prior to 6.6.139
Linux kernel versions prior to 6.1.173
Linux kernel versions prior to 5.15.207
Linux kernel versions prior to 5.10.256
Description
An improper privilege management issue exists in the Linux kernel's ptrace mechanism, specifically within the
get dumpable() and ptrace may access() functions. The flaw stems from a logic error where the system incorrectly handles the dumpability of tasks that lack an associated memory management (mm) pointer, such as kernel threads. This allows an unprivileged local user to bypass privilege boundaries and access file descriptors of other processes. In certain scenarios, this can be exploited via a race condition during process shutdown to steal privileged file descriptors, leading to local root privilege escalation and the disclosure of sensitive credentials, including SSH private keys and /etc/shadow password hashes. Successful exploitation may require the Reliable Datagram Sockets (RDS) module to be loaded, io ring to be enabled, and the presence of a readable SUID-root binary on x86 64 systems.Recommendations
Update the Linux kernel to version 7.0.8 or newer.
Update the Linux kernel to version 6.18.31 or newer.
Update the Linux kernel to version 6.12.89 or newer.
Update the Linux kernel to version 6.6.139 or newer.
Update the Linux kernel to version 6.1.173 or newer.
Update the Linux kernel to version 5.15.207 or newer.
Update the Linux kernel to version 5.10.256 or newer.
Exploit
Fix
LPE
DoS
Improper Privilege Management
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Linuxmint
Linux Kernel
Red Os
Rocky Linux
Ubuntu