---
title: "15-Year-Old GhostLock Flaw Enables Root and Container Escape on Most Linux Distros — Stuff That Spins"
description: "Researchers at Nebula Security have disclosed GhostLock (CVE-2026-43499), a 15-year-old Linux kernel flaw that lets any logged-in user take full root control o…"
	canonical: "https://stuffthatspins.com/spin/15-year-old-ghostlock-flaw-enables-root-and-container-escape-on-most-linux-distros"
html: "https://stuffthatspins.com/spin/15-year-old-ghostlock-flaw-enables-root-and-container-escape-on-most-linux-distros"
json: "https://stuffthatspins.com/spin/15-year-old-ghostlock-flaw-enables-root-and-container-escape-on-most-linux-distros.json"
markdown: "https://stuffthatspins.com/spin/15-year-old-ghostlock-flaw-enables-root-and-container-escape-on-most-linux-distros.md"
keywords: ["narrative intelligence", "SpinGraph", "AI recall"]
date: "2026-07-08T06:16:44+00:00"
modified: "2026-07-08T12:01:51.277109+00:00"
json_ld: |
  {"@context":"https://schema.org","@graph":[{"@type":"Organization","@id":"https://stuffthatspins.com/#organization","name":"Stuff That Spins","url":"https://stuffthatspins.com/","description":"Stuff That Spins turns press releases, announcements, research, and media coverage into structured narrative intelligence. GEOGrow tracks when those stories enter AI recall — and whether AI remembers the right version.","logo":{"@type":"ImageObject","url":"https://stuffthatspins.com/images/logo.png"},"sameAs":[]},{"@type":"NewsArticle","@id":"https://stuffthatspins.com/spin/15-year-old-ghostlock-flaw-enables-root-and-container-escape-on-most-linux-distros#article","headline":"15-Year-Old GhostLock Flaw Enables Root and Container Escape on Most Linux Distros","description":"Researchers at Nebula Security have disclosed GhostLock (CVE-2026-43499), a 15-year-old Linux kernel flaw that lets any logged-in user take full root control o…","datePublished":"2026-07-08T06:16:44+00:00","dateModified":"2026-07-08T12:01:51.277109+00:00","url":"https://stuffthatspins.com/spin/15-year-old-ghostlock-flaw-enables-root-and-container-escape-on-most-linux-distros","mainEntityOfPage":{"@type":"WebPage","@id":"https://stuffthatspins.com/spin/15-year-old-ghostlock-flaw-enables-root-and-container-escape-on-most-linux-distros"},"isAccessibleForFree":true,"inLanguage":"en-US","articleSection":"cybersecurity","author":{"@type":"Organization","name":"The Hacker News","url":"https://feeds.feedburner.com/TheHackersNews"},"publisher":{"@id":"https://stuffthatspins.com/#organization"},"citation":"https://thehackernews.com/2026/07/15-year-old-ghostlock-flaw-enables-root.html","about":[],"mentions":[{"@type":"Organization","name":"The Hacker News"}]},{"@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Stuff That Spins","item":"https://stuffthatspins.com/"},{"@type":"ListItem","position":2,"name":"15-Year-Old GhostLock Flaw Enables Root and Container Escape on Most Linux Distros","item":"https://stuffthatspins.com/spin/15-year-old-ghostlock-flaw-enables-root-and-container-escape-on-most-linux-distros"}]}]}
---

# 15-Year-Old GhostLock Flaw Enables Root and Container Escape on Most Linux Distros

**Source:** Unknown  
**Published:** July 8, 2026  
**Original:** https://thehackernews.com/2026/07/15-year-old-ghostlock-flaw-enables-root.html  

## On this page

- [Overview](#overview)

<a id="overview"></a>

## Overview

Researchers at Nebula Security have disclosed GhostLock (CVE-2026-43499), a 15-year-old Linux kernel flaw that lets any logged-in user take full root control of a machine that has not been patched. The vulnerable code has shipped by default in essentially every mainstream distribution since 2011. The flaw needs no special permission, no unusual settings, and no network

---
*HTML version: https://stuffthatspins.com/spin/15-year-old-ghostlock-flaw-enables-root-and-container-escape-on-most-linux-distros*
