Get the latest tech news

GhostLock, a stack-UAF that has existed in ALL Linux distributions for 15 years


GhostLock (CVE-2026-43499) is a Linux kernel vulnerability found by VEGA that exists in every major distribution since 2011. Triggering the bug does not require any special kernel config or privilege. By turning it into a 97% stable privilege escalation and container escape, Google has rewarded us $92,337 in kernelCTF. This writeup covers the technical details of the exploit.

None

Get the Android app

Or read this on Hacker News

Read more on:

Photo of Linux

Linux

Photo of years

years

Photo of linux distributions

linux distributions

Related news:

News photo

Ryuk ransomware member pleads guilty in the US, faces 15 years in prison

News photo

HP OmniBook Ultra 14 review: HP's best ultraportable in years

News photo

Former ransomware negotiator gets 4 years for BlackCat attacks