Share
## https://sploitus.com/exploit?id=FDF035A7-F06D-5FFD-9B2A-AA9D83F87FF8
# CVE-2026-43499 GhostLock โ€” ARM v7 PoC Trigger

CVE-2026-43499: ARM 32-bit (v7) trigger of the Linux Kernel Futex PI use-after-free vulnerability. **Original repository**: [MobiusM/CVE-2026-43499](https://github.com/MobiusM/CVE-2026-43499) (arm64 version)

## Changes

- Adapted for ARM EABI 32-bit (SYS_futex=240, SYS_gettid=224)
- Automatically detects and downgrades futex_time64 (422)
- Static linking; does not depend on device libraries

## Usage

```bash
adb push trigger /data/local/tmp/
adb push ghostlock_all.sh /data/local/tmp/
adb shell chmod +x /data/local/tmp/trigger /data/local/tmp/ghostlock_all.sh
adb shell /data/local/tmp/ghostlock_all.sh
```

โš ๏ธ The PoC will cause kernel panic โ†’ device restarts. Used solely for verifying the existence of the vulnerability; no privilege escalation occurs. ## Affected Versions

Linux 2.6.39 ~ 6.18.x
Fixed in: 6.1.175, 6.6.140, 6.12.86, 6.18.27, 7.0.4

## Detection

```bash
adb shell /data/local/tmp/ghostlock_all.sh
```