CVE-2026-47329

Incorrect validation of field size in Ubuntu Linux AppArmor notification responses

CVSS 3.3 LOWEPSS 0.1%CWE-1284

Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches which fail to validate invalid sizes of the name field in AppAmor notification responses. The bug can be triggered by an unprivileged local user and could result in handling of crafted responses.

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Produtos afetados

Canonical · Ubuntu Linux

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/noble/commit/?id=9ea8b64b3ad27d0501cf711efa98077998a33b14