Dieter
If you're not allowing SSH access and you've left the "edit cron from container" option disabled (it's off by default in Enhance), you're "probably" safe from "most" casual attackers attempting to exploit this CVE.
The Ubuntu team is already working on a fix. You can check its status by running:
root@test:~# sudo pro fix --dry-run CVE-2026-43499
WARNING: The option --dry-run is being used.
No packages will be installed when running this command.
CVE-2026-43499: Linux kernel (NVIDIA) vulnerabilities
- https://ubuntu.com/security/CVE-2026-43499
1 affected source package is installed: linux
(1/1) linux:
A fix is coming soon. Try again tomorrow.
1 package is still affected: linux
✘ CVE-2026-43499 is not resolved.
root@test:~#
Once the patch becomes available, simply run:
sudo apt update && sudo apt upgrade
sudo reboot