Three critical bypasses in Ubuntu Linux’s unprivileged user namespace restrictions allow local attackers to escalate privileges and exploit kernel vulnerabilities.

These bypasses affect Ubuntu 23.10 and 24.04 LTS systems, where AppArmor-based protections were introduced to limit namespace misuse.

While not granting full system control independently, they become potent when combined with kernel flaws requiring administrative privileges like CAP_SYS_ADMIN or CAP_NET_ADMIN.