What is GHSA-j574-jvxx-m43q?

GHSA-j574-jvxx-m43q is a security advisory published by GitHub Security Advisories with Medium severity. In the Linux kernel, the following vulnerability has been resolved: nstree: tighten permission...

Which CVE IDs does GHSA-j574-jvxx-m43q cover?

GHSA-j574-jvxx-m43q covers the following CVE IDs: CVE-2026-43390. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-j574-jvxx-m43q?

GHSA-j574-jvxx-m43q has a CVSS v3 base score of 5.5, published by GitHub Security Advisories.

GHSA-j574-jvxx-m43qMediumCVSS 5.5

In the Linux kernel, the following vulnerability has been resolved: nstree: tighten permission...

Vendor

GitHub Security Advisories

Published

May 8, 2026

Last Modified

May 26, 2026

🔗 CVE IDs covered (1)

CVE-2026-43390 →

📋 Description

In the Linux kernel, the following vulnerability has been resolved:

nstree: tighten permission checks for listing

Even privileged services should not necessarily be able to see other privileged service's namespaces so they can't leak information to each other. Use may_see_all_namespaces() helper that centralizes this policy until the nstree adapts.

🔗 References (4)

https://nvd.nist.gov/vuln/detail/CVE-2026-43390
https://git.kernel.org/stable/c/0abd81645fc95ec6a9d4e4813000f22c5efc0ff4
https://git.kernel.org/stable/c/8d76afe84fa2babf604b3c173730d4d2b067e361
https://github.com/advisories/GHSA-j574-jvxx-m43q