Back to article

0xdeadbeefnetwork/ssh-keysign-pwn: Steal SSH host private keys and /etc/shadow via the ptrace_may_access mm-NULL bypass + pidfd_getfd. Pre-31e62c2ebbfd kernels. (opens in new tab)

Covered by 18 sources including buttondown.com, PhoronixDiscussed on Hacker News and r/linux

Covered in 18 articles

the grugq's newsletter via buttondown.com·

May 16, 2026

Linux's Latest Vulnerability Allows Reading Root-Owned Files By Unprivileged Users

Discussed on Hacker News and Hacker News

LWN.net featured content

·

Seven new stable kernels with patches for CVE-2026-46333

Linux kernel flaw opens root-only files to unprivileged users

GamingOnLinux·

Fragnesia and ssh-keysign-pwn are the latest Linux security problems

The 4th Linux kernel flaw this month can lead to stolen SSH host keys

Discussed on Hacker News

SSH-Keysign-Pwn: Reading Root-Owned Files via a Ptrace Logic Bug

Discussed on Hacker News

Raesene's Ramblings·

Do containers still contain?

Discussed on Hacker News

blog.simos.info·

Learning about exploits through the safety of Incus

blog.daniel-baumann.ch·

Daniel Baumann: Debian: Linux Vulnerability Mitigation (ssh-keysign-pwn)

In other languages

japan.zdnet.com·

Linuxカーネルに「ssh-keysign-pwn」の脆弱性発覚--直近4度目

Borns IT- und Windows-Blog·

Linux-Schwachstelle ssh-keysign-pwn (CVE-2026-46333) ermöglicht Fremdzugriff auf Dateien

une ligne du temps de la dernière faille du noyau Linux (une autre)