GhostLock: A 15-Year Linux Kernel Vulnerability That Affects Every Distribution
A use-after-free bug in the Linux kernel's real-time mutex implementation has existed since 2011. Researchers earned $92,337 from Google's kernelCTF for discovering and exploiting it.
Read the full articleYou might also wanna read
15-Year-Old Linux Vulnerability ‘GhostLock’ Earns Researchers $92k From Google
GhostLock (CVE-2026-43499) is a 15-year-old Linux kernel vulnerability that allows attackers to gain root privileges.
GhostLock (CVE-2026-43499): A 15-Year-Old Linux Kernel Stack-UAF Vulnerability in All Major Distributions
GhostLock (CVE-2026-43499) is a Linux kernel vulnerability found by VEGA that exists in every major distribution since 2011. Triggering the
GhostLock (CVE-2026-43499): A 15-Year-Old Linux Kernel Stack-UAF Vulnerability in All Major Distributions
GhostLock (CVE-2026-43499) is a Linux kernel vulnerability found by VEGA that exists in every major distribution since 2011. Triggering the
Public Exploit Turns 15-Year Linux Kernel Flaw Into 5-Second Root ...
Linux kernel privilege escalation vulnerability GhostLock (CVE-2026-43499) has lurked undetected in every major distribution since 2011.

Nebula Security publishes GhostLock exploit for 15-year Linux kernel flaw
The AI security lab says the bug powered an IonStack chain and earned a $92,337 kernelCTF reward from Google.
CVE-2026-43499 "GhostLock": 15-Year-Old Linux Kernel Flaw ...
CVE-2026-43499 “GhostLock”: 15-Year-Old Linux Kernel Flaw Gives Local Users Root Access and Container Escape — Public PoC Released. July 8,

GhostLock Bug in Linux Kernel Earns $92k Bounty
Discover how the GhostLock Linux vulnerability, present since 2011, earned researchers a $92k bounty from Google. Learn more about its impac

Comments
Sign in to join the conversation.
No comments yet. Be the first.