Linux Kernel Privilege Escalation Vulnerability in Namespace Visibility Management

A vulnerability in the Linux kernel's namespace management can lead to unauthorized information leakage between privileged services. The issue arises because these services can inadvertently access each other's namespaces. The vulnerability is present in the Linux kernel stable tree, specifically in versions 6.19 and later. The root cause is inadequate permission checks, allowing privileged services to list and potentially leak information from other privileged services' namespaces. This vulnerability has been addressed by tightening the permission checks and centralizing the visibility policy.

Impact

Exploitation of this vulnerability could result in unauthorized information leakage between privileged services, allowing them to access and potentially misuse each other's namespace data.