Linux Latest Vulnerability Allows Reading Root-Owned Files by Unprivileged Users
A new Linux kernel vulnerability named ssh-keysign-pwn allows unprivileged users to read files owned by the root user. The flaw affects all Linux kernel versions up to the latest Git state as of 14 May 2026. It has been patched in the mainline kernel following disclosure by Qualys.
- ▪The ssh-keysign-pwn vulnerability enables unprivileged users to access root-owned files.
- ▪All Linux kernel releases up to the current Git state are affected by this vulnerability.
- ▪Qualys reported the vulnerability and the mainline Linux kernel has been patched to fix it.
- ▪The fix involves modifying the kernel's ptrace behavior to prevent unauthorized access.
- ▪Linux 7.0.8 and LTS kernels have been updated to address the issue.
Opening excerpt (first ~120 words) tap to expand
Linux's Latest Vulnerability Allows Reading Root-Owned Files By Unprivileged Users Written by Michael Larabel in Linux Kernel on 14 May 2026 at 09:35 PM EDT. 51 Comments Following Dirty Frag, Fragnesia, and other Linux kernel vulnerabilities making themselves known in recent days, the latest now is ssh-keysign-pwn. With ssh-keysign-pwn, unprivileged users are able to read root-owned files. That affects all Linux kernel releases up through today's latest Linux Git state as of earlier today. The ssh-keysign-pwn was reported by Qualys and fixed by the mainline Linux kernel earlier today. This patch to adjust the kernel's ptrace behavior is what fixes the issue.
…
Excerpt limited to ~120 words for fair-use compliance. The full article is at Phoronix.