--- a/kernel/capability.c
+++ b/kernel/capability.c
@@ -403,7 +403,7 @@ bool ns_capable_nolog(struct user_namespace *ns, int cap)
                BUG();
        }
 
-       if (security_capable(current_cred(), ns, cap) == 0 && gr_is_capable_nolog(cap)) {
+       if (security_capable_dontaudit(current_cred(), ns, cap) == 0 && gr_is_capable_nolog(cap)) {
                current->flags |= PF_SUPERPRIV;
                return true;
        }