1 article
Qualys Threat Research Unit has disclosed CVE-2026-46333, a race condition in the Linux kernel ptrace subsystem affecting all major distributions since kernel 4.8 (2016). Four working privilege escalation exploits exist using SUID binaries; successful exploitation also discloses /etc/shadow and SSH host private keys. Patch immediately.
Four significant Linux kernel local privilege escalation vulnerabilities in three months is a pattern worth examining. The kernel is not suddenly getting worse. Security research intensity is increasing, and the backlog of unaudited kernel subsystems is being worked through.
CipherWatch Editorial
Security Intelligence Platform