GhostLock (CVE-2026-43499): 15-year-old Linux kernel flaw enables root and container escape
GhostLock (CVE-2026-43499): 15-year-old Linux kernel flaw enables root and container escape
thecybersecguru.com
GhostLock CVE-2026-43499: 15-Year Linux Kernel Root Bug | The CyberSec Guru
GhostLock (CVE-2026-43499) is a 15-year rtmutex use-after-free giving root to any local Linux user. Full technical breakdown of the exploit chain

Researchers have disclosed GhostLock (CVE-2026-43499), a Linux kernel local privilege escalation vulnerability in the rtmutex subsystem that reportedly dates back to 2011. The flaw stems from a use-after-free condition caused by a dangling pointer during proxy-lock rollback and can be leveraged for root privilege escalation and container escape on vulnerable systems.