Linux Kernel Flaw Exposes Root-Only Files to Unprivileged Users
A second kernel vulnerability (CVE-2026-46333) lets ordinary users read protected files such as SSH keys and password databases, breaking a core access-control boundary.
Another Linux kernel weakness lets ordinary users read files that should be off-limits — including secrets like SSH keys.
The short version
- The flaw (CVE-2026-46333) allows unprivileged users to read root-only files.
- Exposed data could include SSH keys and password databases.
- It undermines a core kernel access-control boundary; updated kernels fix it.
Why it matters
Leaking credentials from protected files can hand attackers the keys to escalate further across systems.
Summary by Nerd News Network. Read the full article at The Register via the links above and below.