Invalid pointer deallocation in Ubuntu Linux AppArmor notification handling

6.1 / 10

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H

Description

Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which incorrectly attempt to free a pointer which was not previously kmalloc()d, while at the same time leaking allocated memory. The bug can be triggered by an unprivileged local user and can result in the corruption of slab metadata and could lead to resource exhaustion.

Basic Information

ID CVE-2026-47328

Source canonical

Published May 28, 2026 at 18:27

Affected Product

Vendor Canonical

Product Ubuntu Linux

Version 6.8.0

Affected Versions Canonical Ubuntu Linux 6.8.0
Canonical Ubuntu Linux 6.17.0
Canonical Ubuntu Linux 7.0.0

CWE Classification

CWE-590

References

git.launchpad.net /~ubuntu-kernel/ubuntu/+source/linux/+git/noble/commit/

{
    "lastseen": "",
    "description": "Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which incorrectly attempt to free a pointer which was not previously kmalloc()d, while at the same time leaking allocated memory. The bug can be triggered by an unprivileged local user and can result in the corruption of slab metadata and could lead to resource exhaustion.",
    "published": "2026-05-28T18:27:33.181Z",
    "modified": "2026-05-28T18:27:33.181Z",
    "type": "cve",
    "title": "Invalid pointer deallocation in Ubuntu Linux AppArmor notification handling",
    "source": "canonical",
    "references": "https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/noble/commit/?id=7f3c4902c39432ce7ea0d384cb70eba282247fac",
    "id": "CVE-2026-47328",
    "bulletinFamily": "",
    "cwe": [
        "CWE-590"
    ],
    "cvelist": null,
    "sourceData": "Canonical Ubuntu Linux 6.8.0\nCanonical Ubuntu Linux 6.17.0\nCanonical Ubuntu Linux 7.0.0",
    "sourceHref": "",
    "cvss": {
        "score": 6.1,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Ubuntu Linux",
    "version": "6.8.0",
    "vendor": "Canonical",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Invalid pointer deallocation in Ubuntu Linux AppArmor notification handling_CVE-2026-47328