9-Year-Old Linux Kernel Flaw Enables Root Command Execution on Major Distros (Yes there is another one, only a CVS 5.5 though this time, still looks pretty bad though)
Posted by qwertydiy@reddit | linuxadmin | View on Reddit | 4 comments
forbiddenlake@reddit
Primary source: https://blog.qualys.com/vulnerabilities-threat-research/2026/05/20/cve-2026-46333-local-root-privilege-escalation-and-credential-disclosure-in-the-linux-kernel-ptrace-path
Rough_Technician3161@reddit
Yeah that writeup is wild. Love how it starts as "meh, 5.5 CVSS, nothing huge" and then you keep scrolling and realize it is yet another local root via some obscure corner of ptrace.
Also kind of depressing that this sat in there for 9 years. Makes you wonder how many similar bugs are just quietly waiting in other code paths nobody touches unless they are doing weird debugging stuff.
qwertydiy@reddit (OP)
I have no idea how a local root can be a CVS 5.5?
Ancient-Bat1755@reddit
I wonder how many cves this year are previous contract backdoors or known by governments.