Similar to the recent copy.fail incident, another local privilege escalation vulnerability had been discovered in the Linux Kernel. We learned of this via our threat intelligence feeds on the 8th of May.
None of our systems had the affected kernel modules loaded and so exploitation was not possible. To verify this we use Ansible:
- name: Verify CVE-2026-43284 and CVE-2026-43500 mitigation
ansible.builtin.command: "lsmod | grep -E '^{{ item }}\\s'"
loop:
- esp4
- esp6
- rxrpc
register: module_check
failed_when: module_check.rc != 1
changed_when: false
check_mode: false
Our server systems are patched weekly and so we expect the affected modules to be updated in due course.
As always, if you have any concerns please contact our helpdesk.
Add this period to your calendar